Datazoom Privacy Policy

In this privacy statement, we explain what we do with the data we obtain about you. We recommend you carefully read this statement. In our processing, we comply with the requirements of privacy legislation. That means, among other things, that:

Datazoom complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce.  

Datazoom has certified to the U.S. Department of Commerce that it adheres to the EU-U.S. Data Privacy Framework Principles (EU-U.S. DPF Principles) with regard to the processing of personal data received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension to the EU-U.S. DPF.  

Datazoom has certified to the U.S. Department of Commerce that it adheres to the Swiss-U.S. Data Privacy Framework Principles (Swiss-U.S. DPF Principles) with regard to the processing of personal data received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy policy and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern.  

The Federal Trade Commission has jurisdiction over Datazoom’s compliance with the EU-U.S. Data Privacy Framework (EU-U.S. DPF) and the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF).

To learn more about the Data Privacy Framework (DPF) program, and to view our certification, please visit https://www.dataprivacyframework.gov/.

1. Purpose, data and retention period

1.1 Direct interactions with Datazoom

The information that we collect from you as you directly interact with our website or service is used for the purpose of: 

  • Contact through phone, mail, email and/or webforms

  • Newsletters

  • To support services or products that a customer wants to buy or has purchased

  • To be able to comply with legal obligations

  • Compiling and analyzing statistics to improve the service. 

We collect information from individuals who visit publicly available Datazoom websites, including cookies and the information that they voluntarily submit to us. 

For more information about cookies, please refer to our Cookie Policy. We have concluded a data Processing Agreement with Google. Google may not use the data for any other Google services. The inclusion of full IP addresses is blocked by us.

Information that is manually or vocally given to Datazoom through interactions with our public facing websites or team members is retained indefinitely. 

Our website is not designed to attract children and it is not our intent to collect personal data from children under the age of consent in their country of residence. We therefore request that children under the age of consent do not submit any personal data to us.

1.2 Data-as-a-service to customers

As a data-as-a-service platform, our primary role is to enable our customers to collect data generated by individuals as they interact with the customer’s service and deliver it to the customer’s data storage and analysis tools that are external to Datazoom.

In this capacity, we handle data of individuals who do not directly interact with Datazoom. We do not collect any data other than what is explicitly determined by our customers based on the functionalities and configurations set up by our customers in their own applications. We do not disclose collected data to any parties other than to the data storage and analysis tools explicitly determined by our customers; however, we do use third party cloud infrastructure service providers to enable our service (please see section 3.2).

Data is retained for three days in order to provide lossless delivery to data destinations chosen by our customers. While Datazoom may handle personal data on behalf of our customers, it’s essential to note that we may not have access to or knowledge of the nature of the data or the specific purposes defined by our customers. Our platform’s role is to facilitate the secure transfer of data as directed by our customers’ configurations.

2. Security

We are committed to the security of personal data. We take appropriate security measures to limit abuse of and unauthorized access to personal data. This ensures that only the necessary persons have access to your data, that access to the data is protected, and that our security measures are regularly reviewed.

We are required to disclose personal information in response to lawful requests by public authorities, including to meet national security or law enforcement requirements, 

3. Third-parties

3.1 Links to other websites

This privacy statement does not apply to third-party websites connected by links on our website. We cannot guarantee that these third parties handle your personal data in a reliable or secure manner. We recommend you read the privacy statements of these websites prior to making use of these websites.

3.2 External service providers

We use various third-party cloud data infrastructure service providers to enable the storage and processing capabilities needed for our service. We have contractual agreements with these service providers that require compliance with the data privacy principles. In the event that a third-party partner service fails to comply with data privacy principles, Datazoom assumes liability and accountability for rectifying any such situation. 

4. Amendments to this privacy statement

We reserve the right to make amendments to this privacy statement. It is recommended that you consult this privacy statement regularly in order to be aware of any changes. In addition, we will actively inform you wherever possible.

5. Your rights

If you have any questions or want to know which personal data we have about you, please contact us for assistance free of charge. You can contact us by using the information below. You have the following rights:

5.1 Right to information

You have the right to be informed about why your personal data is collected, how it will be used, and the duration for which it will be retained. 

5.2 Right to access

You have the right to access the personal data that we hold about you. If you wish to review, verify, or request a copy of your data, please feel free to contact us. We will provide you with the relevant information, subject to the verification of your identity and any applicable legal requirements.

5.3 Right to correction and deletion

We are committed to assisting you with your requests to supplement, correct, or delete your personal data. 

For information collected on behalf of our customers, we act based on the instructions of our customers with respect to any modifications or deletions of data. Any requests for data modification or deletion will be communicated to our customers, who will assess and make decisions based on their internal data management policies and legal obligations. We will facilitate this process and ensure your requests are communicated appropriately.

5.4 Right to withdraw consent

5.4.1 Public website

When you visit our website for the first time, we will show you a pop-up with an explanation about cookies. As soon as you click on “Save preferences”, you consent to us using the categories of cookies and plug-ins you selected in the pop-up, as described in this Cookie Policy. You can disable the use of and manually delete cookies via your browser, but please note that our website may no longer work properly.

If you do delete the cookies in your browser, they will be placed again after your consent when you visit our websites again.

5.4.2 Data collected on behalf of our customers

In situations where you have provided consent for the processing of your personal data to our customers, we respect your right to withdraw that consent at any time. However, please note that we do not manage the consent process directly. If you wish to revoke your consent, we will inform our customers of your request, and they will take appropriate actions in accordance with their own consent management procedures.

5.5 Right to object

You have the right to object to the processing of your personal data under certain circumstances. We fully respect your preferences and will comply with your objection unless there are valid and legitimate reasons for continuing the data processing.

6. Submitting a complaint

We are committed to resolving DPF Principles-related complaints about our collection and use of your personal information. Individuals with inquiries or complaints regarding our handling of personal data received in reliance on the EU-U.S. DPF, the UK Extension to the EU-U.S. DPF, and the Swiss-U.S. DPF should first contact Datazoom. 

To ensure that your complaints are handled effectively and impartially, Datazoom provides an independent recourse mechanism: 

6.1 Contact us 

Individuals can contact us through the following means:

Datazoom, Inc.

Privacy Officer: Cory Carpenter

Address: 533 2nd Street, Suite 220, Encinitas, California, 92024-3558, United States

Email: dataprivacy@datazoom.io

Phone number: 347-669-9679

6.2 Investigation 

Our dedicated complaint team, composed of individuals with the authority to thoroughly investigate and address your complaints, will promptly assess, investigate, and document the details and nature of the issue. 

6.3 Communication

We aim to provide you with a resolution or remedy within 45 days of receiving your complaint. If a longer time frame is necessary due to the complexity of the matter, we will keep you informed and ensure that the investigation is carried out diligently.

6.4 Collaboration with authorities

Datazoom is committed to cooperating fully with relevant data protection authorities during the complaint resolution process. We will provide the necessary information and updates to assist in the investigation, ensuring transparency and adherence to data privacy regulations.

6.5 Prevention

If applicable, we take steps to ensure that future data processing does not cause the same issue or concern. 

To hold individuals and entities accountable for non-compliance with our data privacy principles, any incidents of non-compliance will be documented as grounds for sanctions. 

6.6 Dispute resolution

In compliance with the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF, Datazoom commits to cooperate and comply respectively with the advice of the panel established by the EU data protection authorities (DPAs) and the UK Information Commissioner’s Office (ICO) and the Swiss Federal Data Protection and Information Commissioner (FDPIC) with regard to unresolved complaints concerning our handling of personal data received in reliance on the EU-U.S. DPF and the UK Extension to the EU-U.S. DPF and the Swiss-U.S. DPF.

Under certain conditions, you are able to invoke binding arbitration for complaints regarding DPF compliance not resolved by any of the other DPF mechanisms. For additional information, please visit: https://www.dataprivacyframework.gov/s/article/ANNEX-I-introduction-dpf?tabset-35584=2