9 september 2023

Privacy policy

This Privacy Statement explains how our organization uses the personal data we collect from you when you and why. If you have any questions after reading this Privacy Statement, feel free to contact us at support@tapify.io.

To avoid any misunderstandings, we would like to clarify that this Privacy Statement is applicable on processing of personal data from:

  • Users: Segmented into two categories:

    • Administrators: Individuals (workspace owner and admins) who utilize our software (tapify.app) to create, distribute, manage, and share information on behalf of users for the purpose of utilizing the Tapify application.

    • End Users: Individuals who use our software (tapify.app) to manage, utilize, and share information in order to access and utilize the Tapify application.

  • Website visitors: persons who visit our marketing landing page


Tapify is a provider of this service, and not the owner of the collected data. The User is responsible for the data he/she collects and thus data controller of receiving data.

 

1. What data do we collect

Information we collect falls into one of two categories: “voluntarily provided” information and “automatically collected” information.

  • “Voluntarily provided” information refers to any information you knowingly and actively provide us when using or participating in any of our services and promotions.

  • “Automatically collected” information refers to any information automatically sent by your devices in the course of accessing our products and services.


Information we collect from Users (you hold a Tapify account and you are using our service) or Website visitors (you are visiting our website).

Log data

When you visit our website, our servers may automatically log the standard data provided by your web browser. It may include your device’s Internet Protocol (IP) address, your browser type and version, the pages you visit, the time and date of your visit, the time spent on each page, and other details about your visit.


Additionally, if you encounter certain errors while using the site, we may automatically collect data about the error and the circumstances surrounding its occurrence. This data may include technical details about your device, what you were trying to do when the error happened, and other technical information relating to the problem. You may or may not receive notice of such errors, even in the moment they occur, that they have occurred, or what the nature of the error is. Please be aware that while this information may not be personally identifying by itself, it may be possible to combine it with other data to personally identify individual persons.

Device data

When you visit our website or interact with our services, we may automatically collect data about your device, such as:

  • Device type

  • Operating system

  • Geo-location data


Data we collect can depend on the individual settings of your device and software. We recommend checking the policies of your device manufacturer or software provider to learn what information they make available to us.

Personal Information

We may ask for personal information — for example, when you subscribe to our newsletter or when you contact us — which may include one or more of the following:

  • Name

  • Email

  • Phone/mobile number


We may also ask for your personal information when creating a Tapify account or using the service, this may one or more of the following:

  • Name

  • Role in company

  • Contact information such as:

    • Email addresses

    • Phone/mobile numbers

    • Links that leads to external websites

    • Links that leads to social media profiles


Personal information may be collected not only directly from users but also through administrators who are responsible for managing employee data within the system. These administrators may input, update, or manage personal information on behalf of users for legitimate business purposes, such as HR and administrative tasks. It is the responsibility of these administrators or authorized personnel to obtain appropriate consent from users before inputting their personal information into the system and to adhere to the privacy and data protection policies outlined herein.


Additionally, the designated administrators have the capability to set permissions and access controls for each user within the system, ensuring that access to personal information is limited to authorized individuals for specific purposes related to the management of the workspace and its users. Administrators are obligated to protect the confidentiality and security of the data they handle and to use it only for legitimate business purposes, as defined by the company's policies and applicable laws and regulations.


User-Generated Content

We consider “user-generated content” to be materials (text, image and/or video content) voluntarily supplied to us by our users for the purpose of publication, processing, or usage on our platform. All user-generated content is associated with the account or email address used to submit the materials.


Please be aware that any content you submit for the purpose of publication will be public after posting (and subsequent review or vetting process). Once published, it may be accessible to third parties not covered under this privacy policy.

Transaction Data

Transaction data refers to data that accumulates over the normal course of operation on our platform. This may include transaction records, stored files, user profiles, analytics data and other metrics, as well as other types of information, created or generated, as users interact with our services.

Legitimate Reasons for Processing Your Personal Information

We only collect and use your personal information when we have a legitimate reason for doing so. In which instance, we only collect personal information that is reasonably necessary to provide our services to you.


2. How we use your data

Tapify does not sell personal data to third parties or use it for marketing purposes or for serving advertisements. We have no interest in collecting non-anonymized data from anyone who isn’t a registered user of Tapify.


We may collect personal information from you when you do any of the following on our website:

  • Register for an account

  • Purchase a subscription

  • Sign up to receive updates from us via email

  • Use a mobile device or web browser to access our content

  • Contact us via email, social media, or on any similar technologies


We may collect, hold, use, and disclose information for the following purposes, and personal information will not be further processed in a manner that is incompatible with these purposes:

  • to provide you with our platform's core features and services

  • to enable you to customize or personalize your experience of our website

  • to deliver products and/or services to you

  • to contact and communicate with you

  • for analytics, market research, and business development, including to operate and improve our website, associated applications, and associated social media platforms

  • to enable you to access and use our website, associated applications, and associated social media platforms

  • for internal record keeping and administrative purposes

  • to attribute any content (e.g. profile photo's) you submit that we publish on our website


We may combine voluntarily provided and automatically collected personal information with general information or research data we receive from other trusted sources. For example, If you provide us with your location, we may combine this with general information about currency and language to provide you with an enhanced experience of our site and service.

  1. How do we secure your data

Tapify takes the security of your personal data very seriously. We take every effort to protect your personal data from loss, unauthorized access, modification or disclosure. Although we will do our best to protect the personal information you provide to us, we advise that no method of electronic transmission or storage is 100% secure and no one can guarantee absolute data security.


You are responsible for selecting any password and its overall security strength, ensuring the security of your own information within the bounds of our services. For example, ensuring any passwords associated with accessing your personal information and accounts are secure and confidential.


To improve the security and quality of the service, our hosting supplier Cyso holds various certifications. ISO 27001, NEN 7510 and ISO 20000. An information security policy is in force for this and they have taken a large number of procedural and technical measures to protect personal information. Our web servers are located in the Global Switch datacenter and the backups in Equinix are both located in the Netherlands.

How long we keep your personal information

We keep your personal information only for as long as we need to, as outlined in this privacy policy. The retention period may vary based on the purpose for which we are using your information. For instance, if you have provided personal information during the creation of an account, we will retain this information for the duration your account exists on our system. Should your personal information no longer be necessary for this purpose, we will promptly delete it.

In addition to the above, it is important to note that if you choose to delete your account, users or workspace, your information may still be present in our backups for a period of 14 days. This retention in backups is done to ensure data integrity and system functionality. After this 14-day period, your personal information will be permanently removed from our backups as well.

However, there may be circumstances under which we retain your personal information for compliance with legal, accounting, or reporting obligations, or for archiving purposes in the public interest, scientific, historical research purposes, or statistical purposes. We take all necessary measures to ensure that your personal information is handled with the utmost care and in accordance with applicable privacy laws and regulations.

  1. Data we share

We only share your information with our service providers, employees and existing business partners who help us operate our business, in which case those third parties are required to comply with the GDPR framework.


In an effort to be as transparent as possible to our customers, the Subprocessor list includes any third-parties who may have access to your data by utilizing our service. The type of data that the Subprocessor has access to is limited to only what is reasonably necessary to perform the service provided.


Prior to engaging with a Subprocessor, Tapify performs extensive due diligence, which includes security and legal analysis. Each Subprocessor is subject to contract terms that enforce compliance with applicable data protection laws. This list is subject to change, as the needs of the business change.

  • Stripe Payments Europe, Limited: Payment processing platform

    • Located: Ireland

  • Astrodon, Inc. (Loops): Customer engagement, email sending and tracking

    • Located: USA

  • Attio Limited: Customer Relationship Management

    • Located: United Kingdom

  • Not Just Tickets Ltd (Plain): Customer support

    • Located: United Kingdom

  • Zapier: Workflow automation plaform

    • Located: USA

  1. Data transfers

Tapify is based in the EU, all personal information we collect is stored and/or processed in Netherlands, or where we or our partners, affiliates, and third-party providers maintain facilities to help us operate Tapify.

The countries to which we store, process, or transfer your personal information may not have the same data protection laws as the country in which you initially provided the information. If we transfer your personal information to third parties in other countries:

  • we will perform those transfers in accordance with the requirements of applicable law;

  • we will protect the transferred personal information in accordance with this privacy policy.

  1. Your data protection rights

By providing personal information to us, you understand we will collect, hold, use, and disclose your personal information in accordance with this privacy policy. You do not have to provide personal information to us, however, if you do not, it may affect your use of our website or the products and/or services offered on or through it.

  • The right to data portability: Users have the right to receive their data in a structured, commonly used and machine readable format and, if technically feasible, to have it transmitted to another service without any hindrance. You can export data from your Tapify dashboard in CSV.

  • Information from third parties: If we receive personal information about you from a third party, we will protect it as set out in this privacy policy. If you are a third party providing personal information about somebody else, you represent and warrant that you have such person’s consent to provide the personal information to us.

  • Marketing permission: If you have previously agreed to us using your personal information for direct marketing purposes, you may change your mind at any time by contacting us using the details below.

  • Access: You may request details of the personal information that we hold about you.

  • Correction: If you believe that any information we hold about you is inaccurate, out of date, incomplete, irrelevant, or misleading, please contact us using the details provided in this privacy policy. We will take reasonable steps to correct any information found to be inaccurate, incomplete, misleading, or out of date.

  • Non-discrimination: We will not discriminate against you for exercising any of your rights over your personal information. Unless your personal information is required to provide you with a particular service or offer (for example processing transaction data), we will not deny you goods or services and/or charge you different prices or rates for goods or services, including through granting discounts or other benefits, or imposing penalties, or provide you with a different level or quality of goods or services.

  • Notification of data breaches: We will comply with laws applicable to us in respect of any data breach.

  • Complaints: If you believe that we have breached a relevant data protection law and wish to make a complaint, please contact us using the details below and provide us with full details of the alleged breach. We will promptly investigate your complaint and respond to you, in writing, setting out the outcome of our investigation and the steps we will take to deal with your complaint. You also have the right to contact a regulatory body or data protection authority in relation to your complaint.

  • Unsubscribe: To unsubscribe from our email database or opt-out of communications (including marketing communications), please opt-out using the opt-out facilities provided in the communication. We may need to request specific information from you to help us confirm your identity.

  1. Business transfers

If we or our assets are acquired, or in the unlikely event that we go out of business or enter bankruptcy, we would include data, including your personal information, among the assets transferred to any parties who acquire us. You acknowledge that such transfers may occur, and that any parties who acquire us may, to the extent permitted by applicable law, continue to use your personal information according to this policy, which they will be required to assume as it is the basis for any ownership or use rights we have over such information.

  1. Limits of our Privacy Policy

Our website may link to external sites that are not operated by us. Please be aware that we have no control over the content and policies of those sites, and cannot accept responsibility or liability for their respective privacy practices.

  1. Users acceptance of these terms

By using Tapify, Users signify their acceptance of this policy. If Users do not agree to this policy, they should not use Tapify. The continued use of Tapify by users after any modifications to this policy have been published will be considered as their acceptance of those revisions.

  1. Changes to this Privacy Policy

At our discretion, we may change our privacy policy to reflect updates to our business processes, current acceptable practices, or legislative or regulatory changes. If we decide to change this privacy policy, we will post the changes here at the same link by which you are accessing this privacy policy.

  1. Contact us

Please use the following contact information for privacy inquiries:

Tapify

Het Bassin 23B, 7671ST Vriezenveen, The Netherlands


support@tapify.io

© 2024, Tapify

Dutch