Delivering Billing and Payment Data Powered Experiences
This privacy policy (“Privacy Policy”) is designed to inform you how our products gather, use, and handle information, including the personal data of End Users, which is collected on behalf of digital marketers, website owners, leading brands, and other businesses that use our services (“Partner”) - information, including personal data of Partners’ online and in-person users and customers (“End Users”). Our goal is to offer End Users and Partners the necessary information to understand the services we offer and how these services may affect their privacy rights and interests.
This Privacy Policy is meant to help Partners and End Users understand the services we provide through our products and how the services may affect or promote End Users’ and Partners’ rights and interests. Just as our products is to be integrated with Partners’ websites and other technology applications, this Privacy Policy should be read in connection with Partners’ respective privacy policies. Granted this reservation, this Privacy Policy aspires to give you, the reader, a clear picture of the following:
Services we offer
Information we collect
Cookies and other related technologies we use
Purposes we serve
The rights of data subjects that we support
The measures we take to protect data, and
Changes and scope of the product privacy policy.
Our products provide Partners with a broad set of features across various aspects of the sales funnel, from acquisition to activation, retention, and revenue. These include:
Personalization through automation;
Dynamic A/B testing for maximum yield optimization;
A full suite of features designed to maximize website conversions and revenues;
Targeted and omnichannel personalized messaging platforms for End Users; and
Flexible data architecture that allows for powerful integrations with any enterprise system.
We provide our products as Software-as-a-Service (SaaS), which means that we perform our services and processes based on our Partners’ instructions.
To deliver on our promise to leverage real-time personalized selling and marketing powered by artificial intelligence and machine learning capabilities, we cannot do without data, including:
Personal data, meaning any information relating to identified or identifiable individuals, End Users, such as:
contact information, where Partners send us – directly, by using their email service providers (“ESPs”) or via our products.
technical information, in particular IP addresses End Users’ devices by the Partners, when they access or visit Partners’ websites (“Websites”) or other technology products, for example point of sale (“POS”) systems.
non-personal data that does not fall within the meaning of personal data as defined by, and thus is not subject to, the Regulation (EU) 2016/679 of the European Parliament and of the Council of 27 April 2016 on the protection of natural persons with regard to the processing of personal data and on the free movement of such data, and repealing Directive 95/46/EC (General Data Protection Regulation; “GDPR”) which may be made available to us or gathered via End Users’ use of the Websites, our products or the Websites or other technology products of our Partners, and include:
your referring URL, timestamp, browser type and language, device types, GSM operations, operating system, screen parameters, color depth, whether a computer is Java enabled, Internet connection type, browser cookie settings, pages viewed on the Websites, last login time for Websites, last updated date for mobile apps, time of visit, products viewed, placed in the cart, and purchased on the Websites (or through other technology products like point of sale systems), quantity, price, and purchase ID of products placed in the cart or purchased on the Websites, and custom page data, as defined by our Partners – automatically collected by us and our technology providers when End Users visit or access the Websites;
inferred information where – based on the information we collect from End Users’ Website or POS activity, search terms entered through End Users’ browsers, and information gleaned from previous our cookies and local storage (as detailed below) – we may infer other information, such as zip code, country, state, time zone, weather, temperature, heat index, wind chill, or proximity to a shipping location.
As long as we keep and use personal data with non-personal data combined, our processing of the same will remain compliant with the GDPR and all data subjects’ rights will be protected accordingly.
When End Users access our Websites, we gather information through various technologies such as "cookie" technology and JavaScript tags. Cookies are small data packets that our site stores on a user's hard drive, allowing the computer to remember information about their visit. We utilize both session cookies, which expire when the user closes their browser, and persistent cookies, which remain on the user's computer until deleted by them. This helps us gather information and improve the End User's experience on our Websites.
If End Users prefer that we do not store cookies on their hard drive, they may disable this feature on their computer/browser.
Additionally, we may use JavaScript tags to initiate a series of events, including the viewing of a first-party cookie (or the creation of that cookie if it does not yet exist). This helps us and our Partners tailor, analyze, manage, report, and optimize the End User's experience on our Websites and other digital properties.
We collect and utilize personal data for various purposes, including:
Providing our Partners with Services: When we receive personal data from End Users, we may analyze the data and advise our Partners or their ESPs on what content to use in marketing or other communications directed at End Users. Based on our suggestions, tailored emails will be sent by us, our Partners or their ESPs.
Keeping our Partners informed: We send relevant information and updates to our Partners regarding the Services.
Understanding needs and interests: We generally try to understand the needs and interests of both Partners and End Users.
Improving our Services and products: We perform anonymous analytics to help improve and customize our Services and products.
Supporting and troubleshooting: We use personal data to support and troubleshoot our Services.
Investigating and resolving disputes: We investigate disputes related to our Services and resolve them.
Enforcing policies and complying with legal obligations: We investigate violations of our policies and comply with legal obligations as required by law, regulation, or other governmental authority, including responding to a subpoena or similar legal process or government request.
Monitoring system performance: We monitor system performance and network capacity, test and fix systems, and implement upgrades to systems.
We do not rent, sell, or share personal data with third parties without your consent. However, we may disclose personal data if we believe it's necessary to protect our rights, your safety, or the safety of others, investigate fraud, or respond to a government request.
When End Users access our Websites, we use "cookie" technology, JavaScript tags, and other tools to collect information. Cookies are small data packets stored on a computer's hard drive, enabling the computer to recall details of the End User's visit.
We use session cookies that expire when End Users close their browser, and persistent cookies that remain on their computer until they delete them. These tools help us collect information and enhance End Users' experience on the Websites. End Users can disable this feature on their computer if they do not wish to receive cookies.
We also use JavaScript tags to analyze and tailor content in marketing or other communications directed at End Users. We share personal data with our Partners to provide them with relevant information and updates related to the Services, understand their respective needs and interests, conduct anonymous analytics, support and troubleshoot our Services, investigate disputes, and enforce our policies. We do not rent, sell, or share personal data with third parties without consent, except as required by law, regulation, or other government authority, or to respond to a subpoena or similar legal process.
End Users have the right to request access, rectification, erasure, or portability of their personal data or to restrict or stop its processing. To opt-out of our data collection, End Users can follow instructions available on the Websites or use a third-party tag management service to disable our tag. They can also limit ad tracking on their Android or iOS device's privacy settings. We will process such requests in a timely manner in compliance with the GDPR. We will retain the information we collect as long as necessary to provide our services and comply with legal obligations.
Click on the link below to opt-out:
https://www.databillity.com/?INSOPTOUT
We prioritize the security, privacy, and compliance of our customers' data by maintaining a dedicated Security, Privacy, and Compliance Committee (SPCC). Comprised of data protection specialists, legal consultants, and security experts, as well as executive members such as our co-founders, who are 100% committed to increasing transparency and building trust.
Our promise to our partners is to promptly notify them of any privacy incidents and to continually invest in threat detection and avoidance technologies. Additionally, we offer a round-the-clock incident management program to assist in the event of a security or privacy breach.
Furthermore, we have implemented robust security measures for data processing, including encryption, such as AES256 encryption for data at rest in EBS/S3/Glacier/RDS, centralized key management, IPsec tunnels with VPN gateways, and dedicated HSM modules in the cloud. We also monitor and log assets, configurations, and network flows through VPC-FlowLogs, and we apply rule-based configuration checks and actions, filtering, and monitoring of HTTP access to applications.
End Users have the right to request access, rectification, erasure, or portability of their personal data or to restrict or stop its processing. To opt-out of our data collection, End Users can follow instructions available on the Websites or use a third-party tag management service to disable our tag. They can also limit ad tracking on their Android or iOS device's privacy settings. We will process such requests in a timely manner in compliance with the GDPR. We will retain the information we collect as long as necessary to provide our services and comply with legal obligations.
Access is also heavily controlled with multi-factor authentication, fine granular access to objects in Amazon S3, Amazon SQS, and Amazon SNS, API request authentication, geo-restrictions, and temporary access tokens. We prioritize data privacy by choosing where our partners' content is stored, securing the state of their content, and using strong encryption for content in transit or at rest. Additionally, we manage access to our partners' content and AWS services and resources through controlled users, groups, permissions, and credentials, while also hashing all data and transactions. Lastly, we incorporate privacy by design principles in our operation of controls and continuous, real-time auditing, and offer End-Users the option to opt-out of our services at any time via our Privacy Policy.
DataBillity, as your trusted provider, understands the importance of transparency and keeping you informed. We acknowledge that our Privacy Policy may require updates from time to time, however, we assure you that we will not diminish your rights under this policy without your explicit consent. As a responsible data provider, we will make sure to post any changes or updates to our Privacy Policy on this page. If the changes are significant, we will provide a more prominent notice, including email notifications for certain services.
