Your privacy is critically important to us. At Borumi, we follow these principles:
Below is our Privacy Policy, which incorporates and clarifies these principles.
The Data Controller of your personal data is:
Federico Terzi
Address: Via Giulio Cesare Croce 26, San Giovanni in Persiceto, Bologna, Italy
In all matters regarding our services, including the processing of your personal data, you can contact us at [email protected]
This Privacy Policy applies to the information that we collect about you when you use:
Throughout this Privacy Policy we’ll refer to our websites, mobile applications, desktop applications, and other products and services collectively as “Services.”
Below we explain how we collect, use, and share information about you, along with the choices that you have with respect to that information.
We only collect information about you if we have a reason to do so — for example, to provide our Services, to communicate with you, or to make our Services better.
We collect this information from three sources: if and when you provide information to us, automatically through operating our Services, and from outside sources. Let’s go over the information that we collect.
It’s probably no surprise that we collect information that you provide to us directly. Here are some examples:
We also collect some information automatically:
We may also get information about you from other sources. For example:
We use information about you for the purposes listed below:
The processing of your personal data is based on the following legal grounds:
We generally discard information about you when it’s no longer needed for the purposes for which we collect and use it — described in the section above on How and Why We Use Information — and we’re not legally required to keep it.
For example, we keep web server logs that record information about a visitor to one of Borumi’s websites, like the visitor’s IP address, browser type, and operating system, for approximately 30 days. We retain the logs for this period of time in order to, among other things, analyze traffic to Borumi’s websites and investigate issues if something goes wrong on one of our websites.
Because our Services are offered worldwide, the information about you that we process when you use the Services in the EU may be used, stored, and/or accessed by individuals operating outside the European Economic Area (EEA) who work for us, or third-party data processors. This is required for the purposes listed in the “How and Why We Use Information” above.
When providing information about you to entities outside the EEA, we will take appropriate measures to ensure that the recipient protects your personal information adequately in accordance with this Privacy Policy as required by applicable law. These measures include entering into European Commission approved standard contractual arrangements with entities based in countries outside the EEA.
You can ask us for more information about the steps we take to protect your personal information when transferring it from the EU.
We use Cloudflare as a CDN (Content Delivery Network) for our website and assets.
Address:
Cloudflare, Inc. 101 Townsend St, San Francisco, CA 94107 USA
Please be aware that Cloudflare may process your data on servers located outside of the European Economic Area.
You can find Cloudflare’s Privacy Policy at: https://www.cloudflare.com/privacypolicy/
To track and diagnose issues within the Application, we use an external service called sentry.io. If a user encounters an error while using our Application, the details are automatically uploaded in the background. This allows us to analyze the frequency, timing, and context of the errors, including what actions the user was performing when the error occurred. However, please note that we do not have access to user content such as videos, audio, or camera recordings; our sole intention is to improve our Application.
Sentry is provided by Functional Software, Inc. d/b/a Sentry.
Address:
Functional Software, Inc.
45 Fremont Street, 8th Floor
San Francisco, CA 94105
USA
Please be aware that Sentry may process your data on servers located in the United States, outside of the European Economic Area.
You can find Sentry’s Privacy Policy at: https://sentry.io/privacy
We use Google Workspace to handle some of our business operations, including some email communications. When you communicate with us, Google could act as the service provider. We also use Google Workspace Forms to handle some of our waitlists and surveys.
Please be aware that Google may process your data on servers located in the United States, outside of the European Economic Area.
You can find Google’s Privacy Policy at: https://policies.google.com/privacy?hl=en-US
We use Microsoft services to handle some of our business operations, including some email communications. When you communicate with us, Microsoft could act as the service provider.
Please be aware that Microsoft may process your data on servers located in the United States, outside of the European Economic Area.
You can find Microsoft’s Privacy Policy at: https://privacy.microsoft.com/en-gb/privacystatement
Providing your data is optional; however, certain categories may be marked as required. If you do not provide the mandatory information, you may be unable to fully utilize our Services. Your personal data is either provided directly by you or collected through technologies when you connect to our website (e.g., IP address).
While no online service is 100% secure, we work very hard to protect information about you against unauthorized access, use, alteration, or destruction, and take reasonable measures to do so. We monitor our Services for potential vulnerabilities and attacks.
Our Services are not intended for individuals under the age of 13. We do not intentionally collect personally identifiable information from children under 13. If we become aware that a child under 13 has shared personal information with us, we will promptly delete it from our servers. If you are a parent or guardian and you know that your child has provided us with personal information, please contact us so we can take the appropriate actions.
If you are located in certain parts of the world, including some US states and countries that fall under the scope of the European General Data Protection Regulation (aka the “GDPR”), you may have certain rights regarding your personal information, like the right to request access to or deletion of your data.
If you explicitly agreed to it, you might receive marketing emails from Borumi. You can always opt out of marketing emails by utilizing the “unsubscribe” link in the emails, or by contacting us at [email protected]
Note that you might still receive transactional emails (eg. password-reset emails), which are necessary to provide you with our Services.
If you are located in a country that falls under the scope of the GDPR, data protection laws give you certain rights with respect to your personal data, subject to any exemptions provided by the law, including the rights to:
You also have the right to make a complaint to a government supervisory authority.
Laws in some US states require us to provide residents with additional information about the categories of personal information we collect and share, where we get that personal information, and how and why we use it. You’ll find that information in this section (if you are a California resident, please note that this is the Notice at Collection we are required to provide you under California law).
In the last 12 months, we collected the following categories of personal information, depending on the Services used:
In some US states you have additional rights subject to any exemptions provided by your state’s respective law, including the right to:
When you contact us about one of your rights under this section, we’ll need to verify that you are the right person before we disclose or delete anything. For example, if you are a user, we will need you to contact us from the email address associated with your account. You can also designate an authorized agent to make a request on your behalf by giving us written authorization. We may still require you to verify your identity with us.
In some circumstances we may deny your request to exercise one of these rights. For example, if we cannot verify that you are the account owner we may deny your request to access the personal information associated with your account. As another example, if we are legally required to maintain a copy of your personal information we may deny your request to delete your personal information.
In the event that we deny your request, we will communicate this fact to you in writing. You may appeal our decision by responding in writing to our denial email and stating that you would like to appeal. All appeals will be reviewed by an internal expert. In the event that your appeal is also denied this information will be communicated to you in writing.
If your appeal is denied, in some US states you may refer the denied appeal to the state attorney general if you believe the denial is in conflict with your legal rights. The process for how to do this will be communicated to you in writing at the same time we send you our decision about your appeal.
Although most changes are likely to be minor, we may change the Privacy Policy from time to time. We encourage visitors to frequently check this page for any changes to its Privacy Policy. If we make changes, we will notify you by revising the change log below, and, in some cases, we may provide additional notice (like adding a statement to our homepage or the Borumi Blog, or sending you a notification through email or your dashboard). Your further use of the Services after a change to our Privacy Policy will be subject to the updated policy.
This policy was derived from the Automattic privacy policy, available under the CC-SA license here.