Effective Date: April 24, 2018
This Policy is incorporated into, and is subject to, the Zingaya Terms of Service. Capitalized terms used but not defined in this Policy have the meaning given to them in the Zingaya Terms of Service.
We provide a SaaS-based telecommunications platform which enables you to (i) create, and (ii) allow your End Users to utilize, voice and video calls through an internet browser (including related services). Through our Service, you and your End Users can communicate with others through voice, video and/or other forms of communication.
As set forth in more detail herein, we self-certify compliance with the EU-US Privacy Shield Framework and Swiss-U.S. Privacy Shield Framework (collectively, “Privacy Shield”), as set forth by the U.S. Department of Commerce, Zingaya complies with the EU Data Protection Directive 95/46/EC framework as set forth by the European Union regarding the collection, use, and retention of personal data from European Union member countries and Switzerland to the United States. Zingaya has certified that it adheres to the requirements of notice, choice, onward transfer, security, data integrity, access and enforcement.
“Client” means a customer of Zingaya.
“Client Data” means personal data, reports, addresses, and other files, folders or documents in electronic form that a User of the Service stores within the Service.
“End User” means a Client’s customers and end users (including, without limitation, those authorized by Client) of the Service.
“Personal Data” means any information relating to an identified or identifiable natural person.
“Public Area” means the area of the Site that can be accessed both by Users and Visitors, without needing to log in.
“Restricted Area” means the area of the Site that can be accessed only by Users, and where access requires logging in.
“User” means an employee, agent, or representative of a Client, who primarily uses the Restricted Areas of the Site for the purpose of accessing the Service in such capacity.
“Visitor” means an individual other than a User, who uses the Public Area, but has no access to the restricted areas of the Site or Service.
What Information Do You Provide to us and How Do We Use it ?
When you use our Services you provide three types of Information:
(1) Personal Data
(2) Usage Information
(3) SIP & Skype account Information
Personal Data is information collected, received, accessed, used and disclosed (both online and offline) that allows us to identify you. Examples of this kind of information include, as applicable, your name, organization name, email address, login and password, phone number, billing address, mailing address, credit card and payment details, data required for registration, and other similar kinds of information that may be used for the same purpose. We may also request photo identification and/or proof of address information for account verification, telephone number verification, and legal compliance purposes.
Usage Information consists of information provided passively or generated automatically during your use of Zingaya’s Service) including the number of calls, call length, called numbers and call content. Usage Information may include Call Detail Record information (“CDR”) and other call records of Clients and End Users. CDR records may include Personal Data including (i) the identify an End User who initiates a voice or video call, and (ii) the identity of the person which receives such voice or video call. Unless required by applicable law, we don’t provide information on calls, call length, called numbers or call content to any third party.
SIP account information consists of SIP requisites you enter in order to redirect calls using the Zingaya Services. Skype account information consists of Skype ID that you enter in order to redirect calls using the Zingaya Services. Unless required by applicable law, this information is not provided to any third party.
Zingaya will not rent or sell your Personal Data to others. We may store Personal Data in locations outside the direct control of Zingaya (for instance, on servers or databases co-located with hosting providers including, without limitation, Amazon Web Services, Servers.com, Google Cloud and Liquid Web (“Hosting Providers”). Zingaya’s Hosting Providers may physically have servers located anywhere in the world (i.e. including outside the European Union). Any Personal Data you elect to make publicly available on our Sites or through the Service, such as posting comments on a blog page, will be available to others. If you remove information that you have made public on our Sites or through the Service, copies may remain viewable in cached and archived pages of our Sites or the Zingaya Service, or if other users have copied or saved that information. If you wish to post a comment on our blog, registration may be required.
We may gather and share non-Personal Data (such as anonymous usage data, referring/exit pages and URLs, IP address, browser and platform types, referring/exit pages, operating system number of clicks, etc.) with interested third parties to help them understand the usage patterns for certain Zingaya Services and those of our partners. If you remove information that you have made public on the Zingaya Service or Sites, copies may remain viewable in cached and archived pages of the Zingaya Service or Sites, or if other users have copied or saved that information. Non-Personal Data may be stored indefinitely.
We use information that we collect in a variety of ways in providing the Service and operating our business, including, with respect to operations, improvements and communications. Such uses include facilitating the functioning of our business and Sites, complying with applicable law, providing you with products and services, or as otherwise as appropriate in connection with a legitimate business need, including, without limitation:
(1) enabling, providing and enhancing the efficacy of Zingaya’s Sites, products, or services (including the Service and for any other purposes as may be further set forth in agreements between Zingaya and its Clients, including acting as a data processor on behalf of its Clients which act as data controllers);
(2) customer service activities (including via email and telephone), including administering your account, processing / fulfilling / confirming orders, billing, providing technical support, responding to your requests, providing updates, and customizing, enhancing, upgrading and improving Sites and offerings;
(3) sales, marketing and promotional activities (including sales tracking and administering contests), and customer relationship management (including newsletters, notices and sending you requested product or service information); and
(4) internal business processes and management, analysis (including usage trends and preferences), crime/fraud detection and prevention, security, protecting Zingaya’s legal rights, and compliance with governmental, legislative, and regulatory requirements.
You have the ability to opt-out of receiving any promotional communications as described below under “Your Choices.”
Zingaya may disclose Personal Data to business partners and subcontractors, as necessary, for the purpose of providing Zingaya’s Services and performing other requested services, or as otherwise appropriate in connection with a legitimate business need. Such companies are authorized to use Personal Data only as necessary to provide such services to Zingaya.
Credit Card details will be handled securely to ensure confidentiality and 128-bit SSL encryption is used to ensure sensitive data is protected during transmission over the internet.
The Sites also contain a blog where your feedback is accessible by the public as well as by the Zingaya team.
Your feedback sent via Zingaya e-mail is accessible by the Zingaya team only.
We reserve the right to utilize Personal Data and Non-Personal Data for marketing purposes (for instance by displaying selected comments on our website or in other communications), and in order to comply with applicable law (including, without limitation, providing data to our telecommunications providers including Voxbone which is headquartered in Belgium).
From time to time, we may send you surveys or solicit your feedback. We use surveys to gauge user interest in new products and premiums we may offer. We may ask for your feedback on site features. We will use the information we gather to improve our Sites and provide a more meaningful experience to Clients and End Users. We may also use the information to alert you about offers and products in which you have expressed an interest in.
In the event that we (and/or our business lines, subsidiaries or affiliates) are ever sold, acquired, merged, liquidated, reorganized, or otherwise transferred, we reserve the right to transfer our user databases (together with any Personal Data or Non-Persona Data contained therein), to a third-party acquiring our assets. In the event we do so, we will place a prominent notice of the sale on the homepage of our corporate website, with links to information as to how you can change your privacy preferences.
As set forth in more detail above, but subject to appropriate safeguards: (i) your information collected through the Zingaya Service may be stored and processed anywhere in the world (including, without limitation, in the United States, Europe, or any other country in which Zingaya or its subsidiaries, affiliates or service providers maintain facilities), and (ii) Zingaya may transfer information that we collect about you, including Personal Data, to affiliated entities, or to other third parties across borders and from your country or jurisdiction to other countries or jurisdictions around the world.
Zingaya is concerned with protecting your privacy and data, but we cannot ensure or warrant the security of any information you transmit to Zingaya or guarantee that your information on the Zingaya Service may not be accessed, disclosed, altered or destroyed by breach of any of our industry standard physical, technical or managerial safeguards. When you enter sensitive information (such as log in credentials) on our registration or order forms, we encrypt that information using secure socket layer technology (SSL). No method of transmission over the Internet or method of electronic storage, is 100% secure, however. Therefore, we cannot guarantee its absolute security. If you have any questions about security on our Site, you can contact us at email@example.com We may use an outside help platform, and a credit card processing company to bill you if you purchase Services. Such companies do not retain, share, store or use Personal Data for any other purposes.
You shouldn’t install any specific software to use Zingaya Services, and our Site pages don’t install any software to your system.
We are subject to the investigatory and enforcement powers of the U.S. Federal Trade Commission (FTC) and/or the Department of Transportation. We may be required to disclose Personal Data that we handle under the Privacy Shield in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.
We continue to adhere to the U.S.-EU Safe Harbor Framework as set forth by the U.S. Department of Commerce, which will not be affected by the participation in the Privacy Shield Framework.
Certain Personal Data may be subject to our more specific privacy policies, which are also consistent with the requirements of the U.S.-EU Privacy Shield Framework.
We may also collect Personal Data concerning our (and our affiliates’) employees, consultants and candidates for employment (Human Resources Data) in connection with administration of our human resources programs and functions and for purpose of communicating with our employees and consultants.
How Do We Protect Your Data, Information, and Resources?
We use secure technology to protect any information you provide us. The collected passive information is stored in secure databases.
Your Choices – Access, Correction & Deletion
We respect your privacy rights and provide you with reasonable access to the Personal Data that you may have provided through your use of the Services. If you wish to access or amend any other Personal Data we hold about you, or to request that we delete or transfer any information about you that we have obtained from an Integrated Service, you may contact us as set forth in the “Contact Us” section. At your request, we will have any reference to you deleted or blocked in our database.
You may update, correct, or delete your account information and preferences at any time by accessing your Profile page within our site. Please note that while any changes you make will be reflected in active user databases instantly or within a reasonable period of time, we may retain all information you submit for backups, archiving, prevention of fraud and abuse, analytics, satisfaction of legal obligations, or where we otherwise reasonably believe that we have a legitimate reason to do so.
You may decline to share certain Personal Data with us, in which case we may not be able to provide to you some of the features and functionality of the Service.
At any time, you may object to the processing of your Personal Data, on legitimate grounds, except if otherwise permitted by applicable law. If you believe your right to privacy granted by applicable data protection laws has been infringed upon, please contact Zingaya’s Data Protection Officer at firstname.lastname@example.org. You also have a right to lodge a complaint with data protection authorities.
We only retain the Personal Data collected from you for as long as your account is active or otherwise for a limited period of time as long as we need it to fulfill the purposes for which we have initially collected it, unless otherwise required by law. We will retain and use information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements as follows:
• the contents of closed accounts are deleted within twelve (12) months of the date of closure;
• backups are kept for twelve (12) months;
• billing information is retained for a period of seven (7) years as of their provision to Zingaya in accordance with applicable accounting and taxation laws;
• information on legal transactions between Client and Zingaya is retained for a period of seven (7) years as of their provision to Zingaya in accordance with the general limitation period set for civil claims in applicable law.
Zingaya does not own, control or direct the use of any of the Client Data stored or processed by a Client, User or End User within the Service. Only the Client or Users are entitled to access, retrieve and direct the use of such Client Data. Zingaya is largely unaware of what Client Data is actually being stored or made available by a Client or End User to or through the Service and does not directly access such Client Data except as authorized by the Client, or as necessary to provide Services to the Client, Users and End Users.
The Client or End User is the data controller under the Regulation for any Client Data containing Personal Data, meaning that such party controls the manner such Personal Data is collected and used as well as the determination of the purposes and means of the processing of Personal Data contained within any Personal Data.
Zingaya is not responsible for the content of the Personal Data contained in the Client Data or other information stored on its servers (or its subcontractors’ servers) at the discretion of the Client, Users or End Users, nor is Zingaya responsible for the manner in which the Client, Users or End Users collect, handle disclosure, distribute or otherwise process such information.
Under certain conditions, EU individuals may seek redress from the Privacy Shield Panel, a binding arbitration mechanism.
You can contact us by writing or email us at the address below:
Attn: Data Protection Officer
2225 East Bayshore Road Palo Alto, CA 94303-3220
Email for General Support: email@example.com
Email for Privacy Issues: firstname.lastname@example.org