a. What personally identifiable information Maropost collects.
b. How Maropost uses the information.
c. With whom Maropost may share user information.
d. Your choices about collection, use and distribution of the information.
e. The safeguarding procedures that are in place to protect the loss, misuse or alteration of information under Maropost’s control.
f. How users can correct any inaccuracies in the information. If users have questions or concerns regarding this policy, they should contact Maropost Customer Support by email at firstname.lastname@example.org.
Maropost is the sole owner of the information collected on its web properties, including http://maropost.wpengine.com. Maropost collects information from its users at several different points on our Web sites
In order to use Maropost services at any level, and to access certain information or areas of the website (including various downloads, “Test Drives”, webinars, etc.), a user must first complete the registration form. During registration a user is required to give contact information (such as name, telephone number or an email address). We use this information to contact the user about services on our sites. It is optional customer to provide demographic information (such as income level and gender), but encouraged so we can provide a more personalized experience on our sites.
When a user purchases a paying service, we request information from the user on our order form. A user must provide contact information (such as name, email, and billing address) and financial information (such as credit card number, expiration date). This information is used for billing purposes and to fill customer’s orders. If we have trouble processing an order, the information is used to contact the user.
We store information that we collect through cookies and log files to create a profile of our users. A profile is stored information that we keep on individual users that details their viewing preferences. Consequently, collected information is tied to the user’s personally identifiable information to provide offers and improve the content of the site for the user. This profile is used to tailor a user’s visit to our Web sites, and to direct pertinent marketing promotions to them. We do not share personally identifiable elements of your profile with other third parties. Your profile is shared in aggregate form only.
A cookie is a piece of data stored on the user’s computer tied to information about the user. Usage of a cookie is in no way linked to any personally identifiable information while on our site. We use both session ID cookies and persistent cookies. For the session ID cookie, once users close the browser, the cookie simply terminates. We use session cookies to make it easier for you to navigate our Web site. A persistent cookie is a small text file stored on the user’s hard drive for an extended period of time. Persistent cookies can be removed by following Internet browser help file directions.
By setting a persistent cookie on our site, users would not have to log in a password more than once, thereby saving time while on our site. If users reject the cookie, they may still use our site. The only drawback to this is that the user will be limited in some areas of our site. Persistent cookies enable us to track and target the interests of our users to enhance the experience on our site. See the “Profile” section, above.
Technologies such as tags, scripts, local shared objects and local storage are used by Maropost and our partners, affiliates or analytics or service providers. These technologies are used in analyzing trends, administering the website, tracking users’ movements around the site, and gathering demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual and aggregated basis.
5) Log Files
Like most Web sites, our servers use log files to analyze trends, administer the site, track user’s movement in the aggregate, and gather broad demographic information for aggregate use. IP addresses, etc. are not linked to personally identifiable information.
6) Clear Gifs
Clear gifs are tiny graphics with a unique identifier, similar in function to cookies, and are used to track the online movements of Web users. The main difference between the two is that clear gifs are invisible on the page and are much smaller, about the size of the period at the end of this sentence. Clear gifs are not tied to users’ personally identifiable information.
We also use clear gifs in our HTML-based emails to let us know which emails the recipients have opened. This allows us to gauge the effectiveness of certain communications and the effectiveness of our marketing campaigns. If users would like to opt-out of these emails, please see the Opt-out section.
7) Online Behavioral Advertising
We partner with a third party to either display advertising on our website or to manage our advertising on other sites. Our third party partner may use technologies such as cookies to gather information about your activities on this website and other sites in order to provide you advertising based upon your browsing activities and interests. If you wish to not have this information used for the purpose of serving you interest-based ads, you may opt-out by clicking here.
8) Children’s Privacy
We do not knowingly collect personally identifiable information from children under the age of 13. If we learn that we have personally identifiable information on a child under the age of 13, we will delete that information from our systems. Maropost encourages parents to go online with their kids. Here are a few tips to help make a child’s online experience safer:
Teach kids never to give personally identifiable information, unless supervised by a parent or responsible adult. Includes name, address, phone, school, etc. Know the sites your kids are visiting and which sites are appropriate. Look for Web site privacy policies. Know how your child’s information is treated.
Check out the FTC’s site for more tips on protecting children’s privacy online.
Maropost acts as a passive conduit for the distribution and receipt of its user’s e-mail communications and therefore will not monitor, edit, or disclose the contents of a user’s private communications unless Maropost in good faith believes that such action is necessary to: (1) conform to the edicts of the law or comply with legal process served on Maropost; (2) protect and defend the rights or property of Maropost; or (3) act under exigent circumstances to protect the personal safety of its users or the public. Users should also be aware (and hereby agree) that certain technical processing of and access to email messages and their content may be required to: (a) route the messages; (b) conform to connecting networks’ technical requirements; (c) prevent or minimize disruptions to Maropost’ services; or (d) conform to other similar requirements.
1) Communications from the Site
a) Special Offers, Free Trials and Updates
We send all new customers welcoming emails and may communicate with them to introduce and explain their new services. Visitors to our website that are not customers but provide Maropost with contact information may receive emails from Maropost that contain information about our services, special offers and other promotions. Established users will occasionally receive emails containing information about us, updates on new service features, service usage tips, information about third party services or other Maropost services that are likely to be of interest to our users, and customers satisfaction questions. Visitors and Maropost users may opt-out of such notices. Please see the Choice and Opt-out sections. We may contact former customers to gather feedback on the services.
b) Invoices and Account Statements
We send all customers regular emails summarizing usage and credit card charges. These emails are a part of the Maropost service, and users cannot opt-out of receiving them, though they can deactivate their account. Information identifying the credit card is not included in these communications
c) Service Announcements
On rare occasions it is necessary to send out a strictly service related announcement. For instance, if our service is temporarily suspended for maintenance we might send users an email. Generally, users may not opt-out of these communications, though they can deactivate their account. However, these communications are not promotional in nature.
d) Customer Service
We communicate with users on a regular basis to provide requested services and regarding issues relating to their accounts. We reply via email or phone, in accordance with the users wishes.
Periodically, our site requests information from users via surveys. Participation in these surveys is completely voluntary and the user therefore has a choice whether or not to disclose this information. The requested information typically includes contact information (such as name and address), and demographic information (such as zip code). Survey information will be used for purposes of monitoring or improving the use and satisfaction of Maropost’s services. Users’ personally identifiable information is not shared with third parties unless we give prior notice and a choice to opt-out. Though we may use an intermediary to conduct these surveys, they may not use customers’ personally identifiable information for any secondary purposes.
f) Referral Programs
Periodically, Maropost offers referral services, asking a user to inform a friend about our service. We collect the name and email address of the friend, and will automatically send an email invitation to the friend. Maropost stores this information for the sole purpose of sending this email and tracking success of the programs. Your friend may contact us at email@example.com to request that we remove this information from our database.
a) Legal Disclaimer
Though we make every effort to preserve user privacy, we may need to disclose personally identifiable information when required by law wherein we have a good-faith belief that such action is necessary to comply with a current judicial proceeding, a court order or legal process served on our Web site. For example, Maropost may disclose personally identifiable information to law enforcement, other government officials, or third parties in response to criminal or civil subpoenas. Sometimes, these requests come from our third party Internet, telecommunications and service providers all over the world who supply the network required for us to deliver our services. In order to maintain the integrity of our network, we often cooperate with requests from these third party providers and/or requests from law enforcement or other governmental officials directed to these providers.
b) Aggregate Information (non-personally identifiable)
We may share aggregated demographic information with our partners. This is not linked to any personally identifiable information.
c) Third Party Intermediaries
We use an outside credit card processing company to bill users for goods and services. These companies do not retain, share, store or use personally identifiable information for any secondary purposes.
d) Business Transitions
In the event Maropost goes through a business transition, such as a merger, or acquisition by another company, or selling a portion of its assets, users’ personally identifiable information will, in most instances, be part of the assets transferred. Users will be notified prior to a change of ownership or control of their personally identifiable information. If as a result of the business transition, the users’ personally identifiable information will be used in a manner different from that stated at the time of collection they will be given a choice not to have their information used in this different manner, as described in the notification of changes section, below.
Maropost does NOT share your email address externally. While we cannot be responsible for external communications received through Maropost services, if we are given notice that a Maropost Service is being used for spam, then we will deactivate that client.
Maropost users and visitors who do not wish to receive our promotional communications may opt-out from receiving these communications by clicking the opt-out link included at the bottom of every promotional message.
Maropost users may not opt-out of receiving invoices and usage information, service announcements, and customer service communications, although they can deactivate their account.
We display personal testimonials of satisfied Clients on our Web site in addition to other endorsements. With your consent we may post your testimonial along with your name. If you wish to update or delete your testimonial, you can contact us at firstname.lastname@example.org.
1) User Information
Maropost takes every precaution to protect its user’s information. When users submit sensitive information via Maropost’ Web sites, their information is protected both online and off-line.
When our registration/order forms ask users to enter sensitive information (such as credit card number) and when you log in to our platform (such as login credentials), that information is encrypted and is protected with the best encryption software in the industry – SSL. While on a secure page, such as our paid order form, the lock icon on the bottom of Web browsers such as Netscape Navigator and Microsoft Internet Explorer becomes locked, as opposed to un-locked, or open, when users are just ‘surfing’.
While we use SSL encryption to protect sensitive information online, we also employ security measures to protect user- information off-line. All of our users’ information, not just the sensitive information mentioned above, is restricted in our offices. Only employees who need the information to perform a specific job (for example, our billing clerks or a customer service representative) are granted access to personally identifiable information. Finally, the servers that store personally identifiable information are in a secure environment.
No method of transmission over the Internet, or method of electronic storage, is 100% secure, however. Therefore, we cannot guarantee its absolute security. If you have any questions about security on our Web site, you can contact us at email@example.com.
2) Message Content Handling
We will store your personal transmissions on our servers for a limited time and will endeavor to purge old transmissions from its servers when the expiration period has run out (up to 365 days).We use industry-standard efforts to safeguard the confidentiality of your transmissions (as well as your personally identifiable information), such as firewalls and SSL technology. These are the same technologies that most websites use to safeguard credit card information and other personally identifiable information. However, that said, “perfect security” does not exist over telephone lines and the Internet and Maropost accordingly accepts only limited liability for security breaches.
3) Data Retention
The time period for which we keep information varies according to what the information is used for. In some cases, there are legal requirements to keep data for a minimum period. Unless there is a specific legal requirement for us to keep the information, we will retain it for no longer than is necessary for the purposes for which the data was collected or for which it is to be further processed.
If a user’s personally identifiable information changes (such as zip code, phone, email or postal address), or if a user no longer desires our service, we provide a way to correct, update or delete/deactivate users’ personally identifiable information by contacting Maropost Customer Service at firstname.lastname@example.org or by making the change on our member information page or by contacting us by telephone or postal mail at the contact information listed below. We will respond to your request to access within 30 days.
Information Related to Data Collected for our Clients
Maropost collects information under the direction of its Clients, and has no direct relationship with the individuals whose personal data it processes. If you are a customer of one of our Clients and would no longer like to be contacted by one of our Clients that use our service, please contact the Client that you interact with directly. We may transfer personally identifiable information to companies that help us provide our service. Transfers to subsequent third parties are covered by the service agreements with our Clients.
Access and Retention of Data Controlled by our Clients
Maropost has no direct relationship with the individuals whose personal data it processes. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct his query to the Maropost’s Client (the data controller). If requested to remove data we will respond within 30 days.
We will retain personal data we process on behalf of our Clients for as long as needed to provide services to our Client. Maropost will retain this personally identifiable information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.
If, however, we are going to use users’ personally identifiable information in a manner different from that stated at the time of collection we will notify users via email prior to the change becoming effective. Users will have a choice as to whether or not we use their information in this different manner. However, if users have opted out of all communication with the Web site, or deleted/deactivated their account, then they will not be contacted, nor will their personally identifiable information be used in this new manner. In addition, if we make any material changes in our privacy practices that do not affect user information already stored in our database, we will post a prominent notice on our Web site notifying users of the change. In some cases where we post a notice we will also email users, who have opted to receive communications from us, notifying them of the changes in our privacy practices.
At Maropost, we are fully committed to the protection of personal data and are dedicated to the principles outlined in the General Data Protection Regulation (GDPR). We understand our responsibility to respect and protect the personal data of our customers, employees, partners, and all individuals who entrust their information to us.
Our commitment includes:
Personal Data Handling: We ensure that personal data is processed lawfully, fairly, and transparently, without adversely affecting your rights. We only process your data when necessary for the performance of a contract with you, compliance with a legal obligation, protection of your vital interests, consent, carrying out a task in the public interest (or in the exercise of official authority), or for legitimate interests pursued by us or a third party.
Data Minimization: We only collect and process the personal data necessary for any specified purpose and aim to ensure the personal data we hold is accurate and up to date.
Rights of the Individual: Under GDPR, you have certain rights with respect to your personal data which include the right to access, rectify, port, and erase your data, restrict or object to its processing, and the right to withdraw consent at any time (https://gdpr-info.eu/chapter-3/). We have implemented processes to uphold these rights.
Security Measures: We apply appropriate security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction. These measures include physical and technical safeguards, administrative protocols, and staff training.
Data Protection Officer: We have appointed a Data Protection Officer (DPO) who is responsible for overseeing our GDPR compliance.
Data Breach Notification: In the unlikely event of a data breach, we will notify affected individuals and appropriate regulators in accordance with GDPR requirements.
Data Transfers: When we transfer personal data outside the EEA, we ensure an adequate level of protection and appropriate safeguards are in place as required by GDPR.
Third-Party Relationships: We review all third parties that receive personal data from us to ensure they provide sufficient guarantees to implement appropriate technical and organizational measures so that data processing complies with GDPR.
Compliance Reviews and Audits: We regularly review our data processing activities and systems to ensure ongoing GDPR compliance.
Maropost is fully committed to adhering to the principles of GDPR and upholding the highest standards of data protection. We will regularly review and update our GDPR commitment to reflect any changes in regulation, industry standards, or our data processing activities.
Maropost processes personal information (“Processor”) on behalf of our clients who themselves (“Controllers”) and/or their customers (“Data Subjects”) are under the jurisdiction of the European Union. GDPR requires all Controllers facilitate the exercise of Data Subjects rights under Articles 15 to 22. Maropost, as a Processor, is fully able to comply with the exercise of those rights whether through our software, or upon notification of our clients.
Maropost is also a Controller of personal information of Data Subjects who have given us their express consent to receive promotional communications. Data Subjects wishing to exercise their Right to Erasure must submit a written request to email@example.com and include the following information: first name, last name, and email address (and/or mobile device number). Maropost shall erase a Data Subject’s Personal Data within 30 days from receipt of the written request. In cases where compliance cannot be satisfied within this time frame, Maropost shall extend the compliance deadline an additional two months. If this extension is required, then Maropost shall inform the Data Subject within the initial 30 day period along with an explanation of the reason. In cases where Personal Data is not required for statistical purposes, it shall be purged from the system. In cases where Personal Data is required for statistical purposes, it shall be pseudonymized in accordance with Article 89 Paragraph 1.
Under the provisions of the CCPA, natural residents of the State of California have the right to request information regarding personal data collected about them, and to request that their personal data not be resold.
Maropost does not resell personal data to third parties. Maropost collects information under the direction of its Clients, and has no direct relationship with the individuals whose personal data it processes. If you are a resident of the State of California wishing to exercise your rights under CCPA, and a customer of one of our Clients, please contact the Client that you interact with directly.
We do collect site visitor data and email opt-ins for our own marketing purposes. California residents may submit a request to Maropost by following the instructions defined on the Do Not Sell My Personal Information page.
The Service involves the storage of Data about a company or individual. That Data can include personal information. “Personal information” is information about an identifiable individual, and may include information such as the individual’s name, email address, telephone number, address details and other personal information.
Maropost may collect personal information directly from You when You:
You can always choose not to provide Your personal information to Maropost, but it may mean that we are unable to provide You with the Service.
Through Your use of the Service, Maropost may also collect information from You about someone else. If You provide Maropost with personal information about someone else, You must ensure that You are authorised to disclose that information to Maropost and that, without Maropost taking any further steps required by applicable data protection or privacy laws, Maropost may collect, use and disclose such information for the purposes described in this Policy.
This means that You must take reasonable steps to ensure the individual concerned is aware of and/or consents to the various matters detailed in this Policy, including the fact that their personal information is being collected, the purposes for which that information is being collected, the intended recipients of that information, the individual’s right to obtain access to that information, Maropost’s identity, and how to contact Maropost.
Where requested to do so by Maropost, You must also assist Maropost with any requests by the individual to access or update the personal information You have collected from them and entered into the Service.
Maropost collects Your personal information so that we can provide You with the Service and any related services You may request. In doing so, Maropost may use the personal information we have collected from You for purposes related to the Services including to:
By using the Service, You consent to Your personal information being collected, held and used in this way and for any other use You authorise. Maropost will only use Your personal information for the purposes described in this Policy or with Your express permission.
It is Your responsibility to keep Your password to the Service safe. You should notify us as soon as possible if You become aware of any misuse of Your password, and immediately change your password within the Service or via the “Forgotten Password” process.
By using the Service, You agree that Maropost can access, aggregate and use non-personally identifiable data Maropost has collected from You. This data will in no way identify You or any other individual.
Maropost may use this aggregated non-personally identifiable data to:
All Data, including personal and non-personal information, that is entered into the Service by You, or automatically imported on Your instruction, is transferred to Maropost’s infrastructure as a function of transmission across the Internet. By using the Service, You consent to Your personal information being transferred to our infrastructure as set out in this Policy.
Currently we host infrastructure in Australia and USA, we will host your data in the region that makes the most sense for you. For redundancy purposes, backups are stored in other regions from where the primary data store resides.
By providing Your personal information to Maropost, You consent to Maropost storing Your personal information. While Your personal information will be stored in our infrastructure, it will remain within Maropost’s effective control at all times. The infrastructure host’s role is limited to providing a hosting and storage service to Neto, and we’ve taken steps to ensure that our infrastructure hosts do not have access to, and use the necessary level of protection for, Your personal information.
For redundancy purposes, Maropost may backup data to a region other than the region where it is primarily stored. If You do not want Your personal information to be transferred to infrastructure located in another region, You should not provide Maropost with Your personal information or use the Service.
Maropost is committed to protecting the security of Your personal information and we take all reasonable precautions to protect it from unauthorised access, modification or disclosure. Your personal information is stored on secure infrastructure, and all Data transferred between You and the Service is encrypted. You can find out more about our security arrangements and our data protection measures on our security page.
However, the Internet is not in itself a secure environment and we cannot give an absolute assurance that Your information will be secure at all times. Transmission of personal information over the Internet is at Your own risk and You should only enter, or instruct the entering of, personal information to the Service within a secure environment.
We will advise You at the first reasonable opportunity upon discovering or being advised of a security breach where Your personal information is lost, stolen, accessed, used, disclosed, copied, modified, or disposed of by any unauthorised persons or in any unauthorised manner.
Maropost will only disclose the personal information You have provided to us to entities outside the Maropost group of companies if it is necessary and appropriate to facilitate the purpose for which Your personal information was collected pursuant to this Policy, including the provision of the Service.
Maropost will not otherwise disclose Your personal information to a third party unless You have provided Your express consent. However, You should be aware that Maropost may be required to disclose Your personal information without Your consent in order to comply with any court orders, subpoenas, or other legal process or investigation including by tax authorities, if such disclosure is required by law. Where possible and appropriate, we will notify You if we are required by law to disclose Your personal information.
The third parties who host our infrastructure do not control, and are not permitted to access or use Your personal information except for the limited purpose of storing the information. This means that Maropost does not currently disclose personal information to third parties located overseas.
It is Your responsibility to ensure that the personal information You provide to us is accurate, complete and up-to-date. You may request access to the information we hold about You, or request that we update or correct any personal information we hold about You, by setting out Your request in writing and sending it to us at firstname.lastname@example.org.
Maropost will process Your request as soon as reasonably practicable, provided we are not otherwise prevented from doing so on legal grounds. If we are unable to meet Your request, we will let you know why. For example, it may be necessary for us to deny Your request if it would have an unreasonable impact on the privacy or affairs of other individuals, or if it is not reasonable and practicable for us to process Your request in the manner You have requested. In some circumstances, it may be necessary for us to seek to arrange access to Your personal information through a mutually agreed intermediary (for example, the Subscriber).
We’ll only keep Your personal information for as long as we require it for the purposes of providing You with the Service. However, we may also be required to keep some of Your personal information for specified periods of time.
In providing the Service, Maropost utilises “cookies”. A cookie is a small text file that is stored on Your computer for record-keeping purposes. A cookie does not identify You personally or contain any other information about You but it does identify Your computer.
We and some of our affiliates and third-party service providers may use a combination of “persistent cookies” (cookies that remain on Your hard drive for an extended period of time) and “session ID cookies” (cookies that expire when You close Your browser) on the Website to, for example, track overall site usage, and track and report on Your use and interaction with ad impressions and ad services.
You can set your browser to notify You when You receive a cookie so that You will have an opportunity to either accept or reject it in each instance. However, You should note that refusing cookies may have a negative impact on the functionality and usability of the Website.
We do not respond to or honour “Do Not Track” requests at this time.
Maropost sends billing information, product information, Service updates and Service notifications to You via email. Our emails will contain clear and obvious instructions describing how You can choose to be removed from any mailing list not essential to the Service. Maropost will remove You at Your request.
If You wish to complain about how we have handled Your personal information, please provide our Privacy Officer with full details of Your complaint and any supporting documentation:
Our Privacy Officer will endeavour to:
Maropost reserves the right to change this Policy at any time, and any amended Policy is effective upon posting to this Website. Maropost will make every effort to communicate any significant changes to You via email or notification via the Service. Your continued use of the Service will be deemed acceptance of any amended Policy.
“Data Processor”, “Data Subject”, “Processor”, “Processing”, “Subprocessor”, and “Supervisory Authority” to be interpreted as per applicable Data Protection Legislation.
“Data Protection Legislation” refers to General Data Protection Regulation, Regulation (EU) 2016/679 and European Directives 95/46/EC and 2002/58/EC, and any legislation and/or regulation implementing them.
“Personal Data” means information relating to an identifiable Data Subject who visits or engages in transactions through your Maropost Commerce Cloud online store (a “Customer”), which Maropost Processes as a Data Processor in the course of providing you with the Services.