Hiver Privacy Policy

Last Updated: 5th December, 2018

1. Introduction

Grexit, Inc. (“Hiver” or “We” and related connotations) is committed to protecting and respecting your privacy. This Privacy Policy (“Policy”) details our commitment to protecting the privacy of individuals who visit our Website(hiverhq.com) (“Website Visitors”), as well as users of our Services (“Subscribers”). This Policy describes how Hiver collects, uses, shares and secures the personal information you and/or Subscribers provide. It also describes your choices regarding use, access and correction of the respective personal information and how the personal information can be accessed and updated. In case of any questions or complaints regarding our Policy or practices, please get in touch at support@hiverhq.com

Website Visitors and Subscribers are collectively and individually referred to as “You” and related connotations.

2. Scope Of This Policy

This Policy applies to the information that we obtain through your use of "Services" or when you otherwise interact with Hiver.

Sub-Contractor(s): Shall mean Data Processors and Sub-processors and same shall be enlisted at https://hiverhq.com/third-party-subprocessors

Services” includes our:

Websites: Hiver’s website, including but not limited to hiverhq.com, help.hiverhq.com, status.hiverhq.com and any sub-domains and pages;

SaaS Product: Hiver’s “Cloud” hosted solutions; and

Browser Extension: Hiver’s browser extensions that a user has to install in their web browser to use Services.

In this Policy, “personal information” means information relating to an identified or identifiable natural person. An identifiable person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as family name, first name, photograph, postal address, email address, telephone numbers, date of birth, data relating to your transactions on the Website, detail of your orders and subscriptions, bank card number, Payment Information as well as any other information about you that you choose to provide us with. The use of information collected through our Service shall be limited to the purpose of providing the Service for which you have engaged with us.

Subscribers/ Sub-Contractor to our Services are solely responsible for ensuring compliance with all applicable laws and regulations, as well as any and all privacy policies, agreements or other obligations, relating to the collection of personal information in connection with the use of our Services by individuals (also referred to as “data subjects”) with whom our Subscribers/ Sub-Contractors interact. If you are an individual who interacts with a Subscriber/ Sub-Contractor using our Services, in addition to the rights available in Clause 13 below, you will be directed to contact our Subscriber/ Sub-Contractor for assistance with any requests or questions relating to your personal information.

3. Information we collect

Registration and Contact Information. We collect personal information about you when you (a) register to use the Services and (b) otherwise provide contact information to us via email, mail, or through our Offerings. This information you provide may include your username, first and last name, email address, mailing address or phone number.We do not collect or process any special category data from you (viz. any data revealing racial/ ethnic origin, political opinions, religious/ philosophical beliefs, processing of genetic data, biometric data, etc.).

Payment Information. When you purchase the Services, we will also collect transaction information, which may include your credit card information, billing and mailing address, and other payment-related information (“Payment Information”). We describe how Payment Information may be collected and processed in Clause 6 below.

Technical, Usage and Location Information. We automatically collect information on how you interact with the Service, such as the IP address from which you access the Service, date and time, information about your browser, operating system and computer or device, pages viewed and items clicked. We may also collect location information, including location information automatically provided by your computer or device. We use cookies and similar technologies to collect some of this information.

Third Party Platforms. We may collect information when you interact with our advertisements and other content on third-party sites or platforms, such as social networking sites. This may include information such as “Likes”, profile information gathered from social networking sites or the fact that you viewed or interacted with our content.

Mobile When you download, install and use our Mobile Applications, we automatically collect information on the type of device you use, operating system version, and the device identifier (or “UDID”).

Analytics We collect analytics information when you use Services to help us improve them. We may also share anonymous data about your actions on our Websites with third-party service providers of analytics services. We also use mobile analytics software to allow us to better understand the functionality of our mobile application on your device. This software may record information such as how often you use the mobile application, the events that occur within the mobile application, aggregated usage, performance data, and where the mobile application was downloaded from. We do not link the information we store within the analytics software to any personally identifiable information/ personal information you submit within the mobile application.

4. How We Use the Information We Collect

We use your information in the following ways:

  • To authenticate and provide access to Services;
  • To provide, maintain and improve the Services;
  • To process your inquiries and otherwise deliver customer service;
  • To send you communication from the Services; including by sending you maintenance notifications, subscription expiring notifications, newsletters, promotions and special offers or information about new products and services. Your opt-out options for promotional communications are described in this Clause 4;
  • Administer your account;
  • To process your payments, we share and use Payment Information as described in Clause 6;
  • To contact you for your reviews on the website and your experience using the Services; and
  • To deliver you advertising, including by serving and managing ads on the Services or on third party sites and to tailor ads based on your interests and browsing history.

Legal Basis for Processing (EEA only):

If you are an individual from the European Economic Area (EEA), our legal basis for collecting and using the personal information will depend on the personal information concerned and the specific context in which we collect it. However, we will normally collect personal information from you only where: (a) we have your consent to do so, (b) where we need the personal information to perform a contract with you (e.g. to deliver the Services you have requested), or (c) where the processing is in our or a third party’s legitimate interests (and not overridden by your data protection interests or fundamental rights and freedoms). In some cases, we may also have a legal obligation to collect personal information from you, or may otherwise need the personal information to protect your vital interests or those of another person.

Where we rely on your consent to process the personal information, you have the right to withdraw or decline or opt-out of providing your consent at any time. Please note that this does not affect the lawfulness of the processing based on consent before its withdrawal.

If we ask you to provide personal information to comply with a legal requirement or to perform a contract with you, we will make this clear at the relevant time and advise you whether the provision of your personal information is mandatory or not (as well as of the possible consequences if you do not provide your personal information). Similarly, if we collect and use your personal information in reliance on our (or a third party’s) legitimate interests which are not already described in this Notice, we will make clear to you at the relevant time what those legitimate interests are.

Table 1 below depicts the data categories collected and the legal basis applicable :

Table1:

S.No Data Category Legal Basis
1. Registration and Contact Information. Consent, Contractual Obligations , Legitimate Interests
2. Payment Information Contractual Obligations
3. Technical Usage and Location Information Contractual Obligations, Legitimate Interests
4. Third Party Platforms Contractual Obligations, Legitimate Interests
5. Mobile Contractual Obligations, Legitimate Interests
6. Analytics Legitimate Interests

If you have any questions about or need further information concerning the legal basis on which we collect and use your personal information, please contact us using the contact details provided further below in Clause 17.

5. Sharing Of Information Collected

We do not sell, trade, share or transfer your personal information to third parties, except in the following limited circumstances:

  • We may share your personal information with third parties to permit such parties to provide services that help us to provide our business activities, which may include assisting us with marketing, advertising our product/service offerings, or providing, maintaining and improving the features and functionality of the Services, among other things (“Sub-Contractors”). For example, we may provide personal information to our sub-contractors for direct emailing of our newsletters or notifications of our product/service offerings;
  • We may share your personal information when we have a good faith belief that access, use, preservation or disclosure of such information is reasonably necessary to (a) satisfy any applicable law, regulation, legal process or enforceable governmental request, (b) enforce a Customer Agreement, including investigation of potential violations thereof, or (c) protect against imminent harm to our rights, property or safety, or that of our users or the public as required or permitted by law;
  • We may share your personal information with third parties (including our Sub-Contractors and government entities) to detect, prevent, or otherwise address fraud or security or technical issues;
  • We may share your Payment Information to process your payments, as further described in Clause 6 (Payment Information);
  • We may share and/or transfer your personal information if we become involved in a merger, acquisition, bankruptcy, or any form of sale of some or all of our assets;
  • We may share your personal information with a third party if we have your consent to do so; and
  • We hereby declare that we do not have any subsidiaries where your personal information would be shared with.

6. Payment Information

When you purchase the Services, any credit card information you provide as part of your Payment Information is collected and processed directly by our payment processor Stripe through their Stripe Checkout service. We never receive or store your full credit card information. Stripe commits to complying with the Payment Card Industry Data Security Standard (PCI-DSS) and using industry standard security. Stripe may use your Payment Information in accordance with their own Privacy Policy here

7. International Data Transfer

We may transfer information that we collect about you, including personal information, to affiliated entities, or to other third parties (including our Sub-Contractors) across borders and from your country or jurisdiction to other countries or jurisdictions around the world. If you are located in the European Union or other regions with laws governing data collection and use that may differ from U.S. law, please note that you are transferring information, including personal information, to a country and jurisdiction that does not have the same data protection laws as your jurisdiction, and you consent to the transfer of information to the U.S. and the use and disclosure of information about you, including personal information, as described in this Policy. We shall at all times provide an adequate level of protection for the Customer Data processed, in accordance with the requirements of Data Protection Laws.

8. Privacy Shield Frameworks

Hiver participates in and has certified its compliance with the EU-U.S. and Swiss-US Privacy Shield Framework as set forth by the U.S. Department of Commerce regarding the collection, use and retention of personal information transferred from the European Union and Switzerland to the United States. Hiver has certified to the Department of Commerce that it adheres to the Privacy Shield Principles. If there is any conflict between the terms in this Policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view Our certification, please visit https://www.privacyshield.gov/.

Hiver is overseen by the US Federal Trade Commission (FTC) and US laws shall be applicable to questions of interpretation and compliance with this Policy. JAMS is the US-based independent organisation responsible for reviewing and resolving complaints about our Privacy Shield compliance – free of charge to you. We ask that you first submit any such complaints directly to us at privacy@hiverhq.com. If you are not satisfied with our response, please contact JAMS at www.jamsadr.com/eu-us-privacy-shield. In the event that your concern still is not addressed by JAMS, you may be entitled to a binding arbitration under Privacy Shield and its principles.

If we have received your personal information under the Privacy Shield and subsequently transfer it to a third party service provider for processing, we will remain responsible if they process your personal information in a manner inconsistent with the Privacy Shield Principles, unless we prove that we are not responsible for the event giving rise to the damage.

9. Cookies

When you use our Websites or Services, we may store some information on your computer. This information will be in the form of a “cookie” or similar technologies. Cookies are alphanumeric identifiers that are transferred to your computer or mobile device from your browser. We do not use cookies to spy on you or otherwise invade your privacy. They cannot invade your hard drive and steal information. We use cookies to help you navigate the Websites and Services as easily as possible, and to remember information about your current session. You must enable cookies on your web browser to use the Services.

Essential Cookies: These cookies are essential for the basic functionalities offered by the Services. These class of cookies helps in keeping a user logged in to the Services and remember relevant information when they return to the Services. These cookies are essential for the basic functionalities offered by the Services. These class of cookies helps in keeping a user logged in to the Services and remember relevant information when they return to the Services.

Insight Cookies: These are used for tracking the user activities within the Services, which in turn helps us in improving your user experience.

Marketing Cookies: These are used for providing you with customized and interest-based ads based on your browsing behavior and other similar activities on our Websites.

10. Public Forums/Blogs

Hiver may create and host a public discussion forum or Blogs for its users and the general public. Any information disclosed in these areas is deemed public information and each user is responsible for and should exercise caution when disclosing personal information on these forums/Blogs. Hiver is not responsible for any such information disclosed or any action taken as a result of the disclosed information.

11. Communications Preferences

We offer those who provide personal information a means to choose how we use the information provided. You may manage your receipt of marketing and non-transactional communications by clicking on the “unsubscribe” link located on the bottom of our marketing emails or you may send a request to privacy@hiverhq.com

12. How Long We Retain Your Personal Information

We will retain your personal information for as long as is needed to fulfill the purposes outlined in this Policy, unless a longer retention period is necessary, required or permitted by law for archiving purposes in the public interest, scientific/historical research or statistical purposes(depending on circumstances, compatible processing purposes may include compliance/ legal consideration, tax, accounting, security & fraud prevention or other legal requirements). We delete all your data on the expiry of 14 days after the termination of the Services, except as otherwise prohibited by applicable law. Please note that some of your content, data, information, text, files might remain in our backups for a period not exceeding two months. Some information about Your account, such as billing address, invoices or contact details for Your employees, might be retained in our systems solely for administrative purposes.

For personal information that we process on behalf of our Subscribers/ Sub-Contractors, we will retain such personal information in accordance with the terms of our agreement with them, subject to applicable law.

13. Accessing and Updating your personal information

Where we have not obtained personal information from you directly, but from the Subscribers/ Sub-Contractors or any other sources, you shall be intimated about the identity and contact details of the controller, purpose, recipients of personal information, etc. within a reasonable time period. Even upon request we will provide you with information,in case it is not available with you, about whether we hold, or process on behalf of a third party, any of your personal information. To request this information please contact us at privacy@hiverhq.com. Subscribers to our Services may update or change their Account Information by editing their profile or organization record or by contacting support@hiverhq.com for more detailed instructions. To make a request to have personal information maintained by us returned to you or removed, please email support@hiverhq.com Requests to access, change, or remove your information will be handled within thirty (30) days.

An individual who seeks access to, or who seeks to correct or, amend inaccuracies in, or delete personal information stored or processed by us on behalf of a Subscriber/ Sub-Contractor should direct his/her query to the Subscriber/ Sub-Contractor (the data controller). Upon receipt of a request from one of our Subscribers/ Sub-Contractor for us to remove the data, we will respond to their request within thirty (30) days. We will retain personal information that we store and process on behalf of our Subscribers/ Sub-Contractors for as long as needed to provide the Services to our Subscribers/ Sub-Contractors. We will retain and use this personal information for archiving purposes as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

We may decline to process requests that are unreasonably repetitive or systematic, require disproportionate technical effort (for instance, requests concerning information residing on backup tapes), jeopardize the privacy of others, would be extremely impractical, or for which access is not otherwise required. In any case where we perform activities so as to fulfil your rights vide Clause 13 below, we perform them free of charge, except if doing so would require a disproportionate effort or if the requested information is already available with you.

14. Rights

To ensure fair and transparent processing, you shall have the following rights and any information that shall be shared by us with you vide these rights shall be in electronic form:

  • ask for storage period of your personal information;
  • request for access your personal information;
  • right to rectification of personal information without undue delay;
  • right to erasure of personal information without any undue delay, except where processing is necessary for legal purpose and public interest;
  • right to restrict processing or to object to processing. We shall endeavour to communicate the recipients of your personal information about any rectification or erasure of personal information;
  • right to request information of the recipients of the personal information;
  • right to data portability, where technically feasible;
  • right to lodge a complaint with a supervisory authority;
  • right to know the source from where your personal information originated, in case it was not obtained directly from you;
  • right to access (or obtain from us a confirmation if your personal information is being processed by us) the purpose of processing, recipients of your personal information. In the events your personal information is transferred to a third country, we hereby inform you that we undertake appropriate binding safeguards for such transfer;

15. Children’s Personal Information

We do not knowingly collect any personal information from children under the age of 16. If you are under the age of 16, please do not submit any personal information through our Websites or Services. We encourage parents and legal guardians to monitor their children’s Internet usage and to help enforce this Policy by instructing their children never to provide personal information through the Websites or Services without their permission. If you have reason to believe that a child under the age of 16 has provided personal information to us through the Websites or Services, please contact us at privacy@hiverhq.com, and we will use commercially reasonable efforts to delete that information.

16. Security

The security of your personal information is important to us. We maintain a variety of appropriate technical and organizational safeguards to protect your personal information. We limit access to personal information about you to employees who we believe reasonably need to come into contact with that information to provide products or services to you or in order to do their jobs. Further, we have implemented reasonable physical, electronic, and procedural safeguards designed to protect personal information about you. When you enter sensitive information (such as your password), we encrypt that information in transit using industry-standard Transport Layer Security (TLS) encryption technology. No method of transmission over the Internet, method of electronic storage or other security methods are one hundred percent secure. Therefore, while we strive to use reasonable efforts to protect your personal information, we cannot guarantee its absolute security. You can read more about our security practices here

17. Changes To This Policy

We reserve the right to change our Privacy Policy at any time. If we make changes, we will post them and we will indicate at the top of this page the date this policy was last revised. If we make material changes to this policy, we will notify you by email or through a prominent notice on the Website prior to the changes being effective. We encourage you to periodically review this page for the latest information on our privacy practices. Your continued use of the Websites or the Services constitutes your agreement to be bound by such changes to this Policy. You can choose to discontinue use of the Websites or Services, if you do not accept the terms of this Policy, or any modified version of this Policy.

18. Contact Us

If you have questions or need to contact us about this Privacy Policy, please email us at privacy@hiverhq.com