Sparkflow Privacy Policy
Updated: 29th October 2019
Overview
In order to provide you with best possible services, Sparkflow need to collect some of your personal data. This policy describes the ways we collect and use this data and gives you information about the ways to access, update or remove certain information about you. We want to stay transparent with you, that’s why we keep this policy clear and concise, while doing everything we can to stay compilant with General Data Protection Regulation (GDPR).
The Data Controller described here is Sparkflow sp. z o.o. sp. k., ul. Roździeńska 1B, 40-382 Katowice, Poland. Any usage of “Sparkflow”, “we”, “us” or “our” through this document refers to Data Controller.
Contact details regarding this policy is provided below. We may change or update this policy to reflect the changes in our practices or changes in applicable law.
Contact information regarding this policy
You may contact us regarding the privacy policy through privacy@sparkflow.pl.
Data we collect
Contact information
- To be able to conduct the business with you, we need to collect some of your contact information. This information is necessary to our service. If you’re unhappy about the usage of your contact information, you may provide us with different contact at your company and require that we remove your data.
- What we collect: name, surname, email address, phone number, company name, company location.
- What we don’t collect: any of your non-business information, including your personal adress of residence, unless it is strictly necessary to provide our services and you gave us your clear consent to use this information.
- What we use this information for:
- To communicate regarding your active interest in our services or products and in order to deliver those services or products.
- To provide you with more information about our services and products relevant in the future (legitimate interest).
- How we collect that data:
- Through contact form on the website.
- Through phone or email contact.
- Through direct contact by our employees, including collecting your business card.
Behavioural data on our website
- To provide better services, we collect some behavioural data when you visit our website.
- What we collect: device information, rough geographical location, IP address, web browser information, ISP information.
- What we don’t collect: any behavioural data we collect is aggregated and anonymized, so it is not directly connected with you. It is however possible to trace analytics down to your IP address.
- What we use this information for:
- To improve your experience with our services and to provide you with information relevant to your interests.
- How we collect that data:
- Through usage of cookies.
- Through usage of customized links.
Data Processing
International transfer
When using third-party data processors, we work with the providers who either hold and process your data inside European Economic Area (EEA) or are certified to hold EEA data under EU-US Privacy Shield.
Third-party processors
We use following third-party processors:
- Hubspot:
- Data: Contact information
- Processing purpose: Service delivery.
- Processing location: US (Privacy shield)
- Google:
- Data: Contact information, Behavioural data on our website
- Processing purpose: Service delivery, Web analytics.
- Processing location: US (Privacy shield)
Transfer to other parties
Under certain circumstances we transfer your data to other third-party processors:
- Our suppliers, subcontractors or partners – when it is necessary for the third-party to participate in order to provide you with our service. An example of that is when we provide your contact information to hardware supplier, so you will be able to obtain complimentary hardware necessary to our service. You will be notified by email when such data transfer will occur.
- Our professional services providers – when it is necessary for us to obtain professional advice. This includes for example processing of the invoices for the bookeepping purposes.
Your rights to your data
The GDPR provides you with the following rights to your data:
- Right to be informed – you have the right to know when and why we collect your data. That’s why we provide you with this policy and our contact information if you have any further questions.
- Right to access – at any time you have a right to obtain a copy of your personal data that we hold. Upon request we’ll provide you with such copy within one month.
- Right to rectification – you have a right to rectify inaccurate or incomplete personal data. Upon request we’ll update your data data within one month.
- Right to erasure – you have a right to be forgotten. Upon request we’ll remove any of your data we hold within one month. Please note that in some cases we may not be able to erase your data, for example if it’s strictly needed to our services delivery. In those cases we’ll work with you to find the best solution.
- Right to restrict processing – you have the a right to provide us with permission to store the data, but disallow the processing of this data. As with the right of erasure, there are certain cases when we’ll not be able to stop processing of your data, but we’ll provide you with best available solution for such situations.
- Right to data portability – you have a right to obtain your data in machine-readable format to transfer this data to other controllers. Upon request we’ll provide you with formatted data within one month.
- Right to object – you have a right to stop us from processing your data for any direct marketing. Upon request, we’ll stop using your data for any direct marketing purposes.