This is a notice to inform you of IRONSCALES LTD’s (“IRONSCALES”) policy regarding all information we record about users and visitors (collectively, “users”) of our website, available at https://ironscales.com/ (the “website”), and our mobile app, available on the Google Play and Apple app stores (the “app”, and collectively with the Website, the “services”). It sets out the conditions under which we may process any information that we collect from you, or that you provide to us. It covers information that could identify you (“personal data”) and information that could not (“anonymous data”). In the context of the law and this notice, “process” means collect, store, transfer, use or otherwise act on information, and "we", "our", or "us" refers to IRONSCALES.
We take the protection of your privacy and confidentiality seriously. We understand that all users of our services are entitled to know that their personal data will not be used for any purpose unintended by them, and will not accidentally fall into the hands of a third party. We undertake to preserve the confidentiality of all information you provide to us. The law requires us to tell you about your rights and our obligations to you in regards to the processing and control of your personal data. Except as set out below, we do not share, sell, or disclose to a third party any information collected through our services.
Information Collection, Use, and Sharing
We are the sole owners of the information collected via our services. We only have access to/collect personal data that you:
We will use your information to respond to you, regarding the reason you contacted us. We will not share your information with any third party outside of our organization, other than as necessary to fulfill your request.
We may contact you via email in the future to tell you about specials, new products or services, provided: (i) you have requested and/or consented to receiving such communications; or (ii) we have an existing relationship with you, and it would be considered our legitimate interest to do so. If you choose not receive any additional communications, you may unsubscribe at any time using the following link in the email you receive from us or just by replying to that email.
Our website also uses technologies of third-party partners to help us recognize your device and understand how you use our website so that we can improve our services to reflect your interests and serve you advertisements about the services that are likely to be of more interest to you. Specifically, these partners collect information about your activity on our site(s) to enable us to:
Your Access to and Control Over your Personal Data
The following rights (which may be subject to certain exemptions or derogations), shall apply to individuals who are protected by the GDPR:
We note that several of the above rights are also available to users from territories outside of the EU (which are not subject to the GDPR) under applicable law. If you would like to know more about your rights, you are welcome to contact us at firstname.lastname@example.org.
1. We have a contractual obligation with you
When you buy a product or service from us, or otherwise agree to our terms and conditions, a contract is formed between us.
In order to carry out our obligations under that contract, we must process the personal data you give us, including your first and last name, email address, job title, company name, number of employees and phone number. Some of this information may be personal data.
We may use it in order to:
We process this information on the basis there is a contract between us, or that you have requested we use the information before we enter into a legal contract. Additionally, we may aggregate this information in a general, anonymous way and use it to provide class information, for example to monitor our performance with respect to a particular service we provide. If we use the anonymous data for this purpose, you as an individual will not be personally identifiable.
We shall continue to process this information until the contract between us ends or is terminated by either party under the terms of the contract, and for a reasonable period thereafter, for us to have an accurate record of your dealings with us in the event of any complaints or challenges.
2. You provide consent
Through certain actions when otherwise there is no contractual relationship between us or any other legal basis available, such as when you use our services, browse our website for the challenges we solve, and our products and services, you may provide your consent to us to process your personal data.
Except where you have consented to our use of your personal data for a specific purpose, we do not use your personal data in any way that would identify you personally.
If you have given us explicit permission to do so, we may from time to time pass your name and contact information to selected IRONSCALES associates whom we consider may provide information you would find useful.
We continue to process your personal data on this basis until you withdraw your consent.
You may withdraw your consent at any time by instructing us at by clicking on the link in the email you received or by replying to that email.
3. Legitimate interests
We may process personal data on the basis there is a legitimate interest, either to you or to us, of doing so.
Where we process your personal data on this basis, we do after having given careful consideration to:
For example, we may process your personal data on this basis for the purposes of:
4. Legal obligation
We are subject to the law like everyone else. Sometimes, we must process your personal data in order to comply with a statutory obligation.
For example, we may be required to give information (including personal data) to legal authorities if they so request or if they have the proper authorisation such as a search warrant or court order. This may include your personal data.
5. Job applications
If you send us information in connection with a job application, we may keep it for up to three years, in case we decide to contact you at a later date.
6. Sending a message to our support team
When you contact us, whether by telephone, through our website or by e-mail or any other means of communication, we collect the personal data you have given to us in order to reply with the information you need.
We keep personal data associated with your message, such as your name and email address so as to be able to track our communications with you to provide a high quality service.
Cookies are small text files that are placed on your computer's hard drive by your web browser when you visit any website. They allow information gathered on one web page to be stored until it is needed for use on another, providing us with statistics about how you use the website so that it can be improved.
Some cookies may last for a defined period of time, such as one day or until you close your browser. Others last indefinitely.
Your web browser should allow you to delete any you choose. It also should allow you to prevent or limit their use.
8. Personal identifiers from your browsing activity
Requests by your web browser to our servers for web pages and other content on our website are recorded.
We record information such as your geographical location, your Internet service provider and your IP address. We also record information about the software you are using to browse our website, such as the type of computer or device and the screen resolution.
We use this information in aggregate to assess the popularity of the webpages on our website and how we perform in providing content to you.
If combined with other information we know about you from previous visits, the data possibly could be used to identify you personally, even if you are not signed in to our website.
9. Analytic Tools
10. Our use of re-marketing
Re-marketing involves placing a cookie on your computer when you browse our website in order to be able to serve to you an advert for our products or services when you visit some other website.
Our partners (such as NextRoll) may use non-cookie technologies that may not be impacted by browser settings that block cookies. Your browser may not permit you to block such technologies. For this reason you can use the following third party tools to decline the collection and use of information for the purpose of serving you interest based advertising:
12. Encryption of data sent between us
We use Secure Sockets Layer (SSL) certificates to verify our identity to your browser and to encrypt any data you give us. Whenever information is transferred between us, you can check that it is done so using SSL by looking for a closed padlock symbol or other trust mark in your browser’s URL bar or toolbar.
13. Access to your personal data
To obtain a copy of any personal data that we hold about you, you may send us a request at email@example.com.
After receiving the request, we will tell you when we expect to provide you with the information.
14. Removal of your information
If you wish us to remove your personal data from our records, you may contact us at firstname.lastname@example.org.
15. Verification of your information
When we receive any request to access, edit or delete personal identifiable information we shall first take reasonable steps to verify your identity before granting you access or otherwise taking any action. This is important to safeguard your personal data.
16. Third parties we share information with
17. Merger, sale or bankruptcy
If, in the future, we sell or transfer some or all of our business or assets to a third party, we will (to the minimum extent required) disclose information to a potential or actual third-party purchaser of our business or assets, or in the event of bankruptcy or a comparable event, we reserve the right to transfer or assign personal data in connection with the foregoing events.
18. Intercompany transfers of data
We ensure transfers within the IRONSCALES group will be covered by an agreement entered into by members of the IRONSCALES group (an intra-group agreement) which contractually obliges each member to ensure that Personal Data receives an adequate and consistent level of protection wherever it is transferred to.
19.Transfers from the EU to overseas
Where we transfer your Personal Data outside of Illusive, for example to third parties who help provide our products and services, we will obtain contractual commitments from them to protect your Personal Data. Some of these assurances are well recognized certification schemes like the EU - US Privacy Shield for the protection of Personal Data transferred from within the EU to the United States.
20. Use of site by children
We do not sell products or provide services for purchase by children, nor do we market to children.
If you are under 16, you may use our services only with consent from a parent or guardian
21. How you can complain
If you are not happy with our services or if have any complaint then you should tell us by email. Our address is email@example.com.
If a dispute is not settled then we hope you will agree to attempt to resolve it by engaging in good faith with us in a process of mediation or arbitration.
If you are in any way dissatisfied about how we process your personal information, you have a right to lodge a complaint with a supervisory authority, which varies by jurisdiction.
22. Retention period for personal data.
to comply with other law, including for the period demanded by our tax authorities;
to support a claim or defence in court.
23. California Privacy Rights
23.1. Right to access. California Civil Code Section 1798.83 permits our customers who are California residents to request certain information regarding our disclosure of Personal Information to third parties for their direct marketing purposes. To make such a request, please send an email to firstname.lastname@example.org. Please note that we are only required to respond to one request per customer each year.
23.2. Do no track notice. We collect personal data our about user’s online activities over time and across different web sites when a user uses our site. If you choose to operate your web browser “do not track” signals or any other mechanism that provides consumers the ability to exercise choice regarding the collection of such information, we will abide by your request and stop collecting such information. We also allow third parties such as such as companies that provide us with analytics tools, and those mentioned above to collect limited portions of personal data (e.g., IP address, Device ID) about your online activities over time and across different web sites you use the site. If you choose not to allow third parties to collect your personal data, you can disable those services using the pop up banner available to user.
23.3. Deletion of Content from California Residents. If you are a California resident under the age of 18 and a registered user, California Business and Professions Code Section 22581 permits you to remove content or Personal Information you have publicly posted. If you wish to remove such content or Personal Information and you specify which content or Personal Information you wish to be removed, we will do so in accordance with applicable law. Please be aware that after removal you will not be able to restore removed content. In addition, such removal does not ensure complete or comprehensive removal of the content or Personal Information you have posted and that there may be circumstances in which the law does not require us to enable removal of content.
We may update this privacy notice from time to time as necessary. The terms that apply to you are those posted here on our services on the day you use our services. We advise you to print a copy for your records.
Last updated: July 2020