Privacy Policy

This document is an extension of the Privacy Policy of the unFIX website for users of the unFIX Plotter. Everything written there is applicable to this Privacy Policy as well. Therefore this document lists only the relevant clauses on top of that document. Please get familiar with the parent document first!

Types of data collected

The personal data that unFIX Plotter processes independently or through third parties includes: Email; Name; Phone Number; Payment Data; First Name; Last Name; Billing Address; Purchase History; Usage Data; Tracker; Username; Password; Profile Picture; Social Networking Accounts; Universally Unique Identifier (UUID); Language; Region; City; Country; State; Data Submitted During Use of the Service; Device Information; Number of Users; Number of Sessions; Session Duration; Application Executions; App Launches; Operating Systems.

Full details of each type of personal data processed are provided in the designated sections of this Privacy Policy or selectively through explanatory text displayed prior to data collection.

Personal data may be provided voluntarily by the user or, in the case of usage data, may be collected automatically when unFIX Plotter is used.

Unless otherwise specified, the provision of all data requested by unFIX Plotter is mandatory. If the user refuses to provide the data, this may result in unFIX Plotter being unable to provide its services to the user. In cases where unFIX Plotter expressly states that the provision of personal data is voluntary, users may choose not to provide such data without any consequences for the availability or functioning of the service.

Users who are unclear about which personal data is mandatory may contact the Provider.

Any use of cookies - or other tracking tools - by unFIX Plotter or third party service providers used by unFIX Plotter is for the purpose of providing the service requested by the user and any other purposes described in this document and, if any, in the Cookie Policy.

Users are responsible for all personal data of third parties obtained, published or disclosed by unFIX Plotter and confirm that they have obtained consent for the transfer of personal data of any third parties to unFIX Plotter.

Type and place of data processing

Processing methods

The Provider processes User Data in a proper manner and takes appropriate security measures to prevent unauthorized access and unauthorized forwarding, modification or destruction of data.

 Data processing is carried out by means of computers or IT-based systems in accordance with organizational procedures and practices specifically aimed at the stated purposes. In addition to the data controller, other parties could also operate unFIX Plotter internally (human resources, sales, marketing, legal department, system administrators) or externally - and in the case where necessary, designated by the data controller as processors (such as technical service providers, delivery companies, hosting providers, IT companies or communication agencies) - and therefore have access to the data. An up-to-date list of these parties may be requested from the provider at any time.

Legal basis for processing

 The provider may only process personal data of users if one of the following applies:

- Users have given their consent for one or more specific purposes. Note: In some jurisdictions, the provider may be permitted to process personal data until the user objects to such processing ("opt-out") without relying on consent or any other of the following legal bases. However, this does not apply if the processing of personal data is subject to European data protection law;

- the collection of data is necessary for the performance of a contract with the user and/or for pre-contractual measures arising therefrom;

- the processing is necessary for compliance with a legal obligation to which the provider is subject;

- the processing is related to a task carried out in the public interest or in the exercise of official authority vested in the Provider;

- the processing is necessary to protect the legitimate interests of the provider or a third party.

In any case, the Provider will be happy to provide information about the specific legal basis on which the processing is based, in particular whether the provision of personal data is a legal or contractual obligation or a prerequisite for the conclusion of a contract.

Location

Data is processed at the Provider's office and at all other locations where the entities involved in data processing are located.

Depending on the location of the users, data transfers may involve the transfer of the user's data to a country other than the user's own. To learn more about the location of the processing of the transferred data, users may consult the section detailing the processing of personal data.

Users also have the right to be informed about the legal basis of the transfer of data to a country outside the European Union or to an international organization governed by international law or established by two or more countries, such as the UN, as well as to be informed about the security measures taken by the Provider to protect their data.

 If such a transfer takes place, the User can learn more about it by reviewing the relevant sections of this document or by contacting the Provider via the information provided in the contact section.

Storage period

 Personal data will be processed and stored for as long as required by the purpose for which it was collected.

Therefore:

- Personal data collected for the purpose of fulfilling a contract concluded between the provider and the user will be stored until the complete fulfillment of this contract.

- Personal data collected for the purpose of safeguarding the Provider's legitimate interests will be kept for as long as it is necessary for the fulfillment of these purposes. Users may obtain more detailed information about the Provider's legitimate interests in the relevant sections of this document or by contacting the Provider.

In addition, the provider is permitted to store personal data for a longer period of time if the user has consented to such processing, as long as the consent is not revoked. In addition, the provider may be obliged to store personal data for a longer period of time if this is necessary to fulfill a legal obligation or by order of an authority.

After the retention period has expired, personal data is deleted. Therefore, the right of access, the right of deletion, the right of rectification and the right of data portability cannot be exercised after the expiry of the retention period.

Purposes of processing

Personal data about the User is collected in order for the Provider to provide the Service and further to comply with its legal obligations, respond to enforcement requests, protect its rights and interests (or those of the Users or third parties), detect malicious or fraudulent activities. In addition, data is collected for the following purposes: Managing contacts and sending messages, contacting the user, managing productivity operations, handling payments, displaying content from external platforms, registration and login, hosting and backend infrastructure, analytics, creating and managing backups, platform services and hosting, advertising, managing data collection and online surveys, remarketing and behavioral targeting and tag management.

Users can find more detailed information about these processing purposes and the personal data used for each purpose in the "Personal Data Processing Details" section of this document. 

Analytics

Mixpanel

We collect personal information such as your email address and your user activity through the use of Mixpanel. Mixpanel’s ability to use and share information is governed by the Mixpanel Terms of Use, available at https://mixpanel.com/terms/, and the Mixpanel Privacy Policy, available at https://mixpanel.com/privacy/. You can opt-out of Mixpanel’s services by clicking on the following link: https://mixpanel.com/optout/.

Hotjar

The Website uses Hotjar in order to better understand our users’ needs and to optimize this service and experience. Hotjar is a technology service that helps us better understand our users' experience (e.g. how much time they spend on which pages, which links they choose to click, what users do and don’t like, etc.) and this enables us to build and maintain our service with user feedback. Hotjar uses cookies and other technologies to collect data on our users’ behavior and their devices (in particular device'sIP address (captured and stored only in anonymized form), device screen size, device type (unique device identifiers), browser information, geographic location (country only), preferred language used to display our Website). Hotjar stores this information in a pseudonymized user profile. Neither Hotjar nor we will ever use this information to identify individual users or to match it with further data on an individual user. For further details, please see Hotjar’s privacy policy at https://www.hotjar.com/legal/policies/privacy. You can opt-out to the creation of a user profile, Hotjar’s storing of data about your usage of our Website and Hotjar’s use of tracking cookies on other websites on this link https://www.hotjar.com/legal/compliance/opt-out.

Authentication

Firebase Authentication (Google Inc.)

By registering or authenticating, you allow this website to identify you in order to update you on improvements to our service, and to provide a personalized experience, including storage of assets in our cloud storage. In order to provide log in, we rely on the services of Firebase Authentication, a registration and authentication service provided by Google Inc. To simplify the registration and authentication process, Firebase Authentication can make use of third-party identity providers and save the information on its platform. The collection and usage of this data by Google is covered by the Google Privacy Policy at https://www.google.com/intl/policies/privacy/. If you choose to log in, our website will be able to access some data stored by this service, for registration or identification purposes.

Infrastructure

Google Cloud Services (Google Inc.)

We rely on Google Cloud Services (Google Inc.) for infrastructure supporting our app. This type of service has the purpose of hosting Data and files that enable this Service to run and be distributed as well as to provide a ready-made infrastructure to run specific features or parts of this Service. Some of these services work through geographically distributed servers, making it difficult to determine the actual location where the personal data is stored. Specifically, we use Google Cloud Firestore to store information associated with your account, including your email and any assets you choose to save using the Service. While we shall take appropriate security measures to ensure the safety of your personal data stored using Google Cloud Firestore, we assume no responsibility in the event that these third party services fail. The Google Cloud Services are governed by the following Terms of Use (https://cloud.google.com/terms/). Further, because our website is under active development, we shall not be responsible or liable, directly or indirectly, for any damage associated with the loss of information you choose to store using our Service, such as Organization Designs or Members.

Firebase Hosting

Collects IP addresses for security and diagnostic purposes

Payments

See Stripe and Xero in the original Privacy Policy from the unFIX website.