Last Updated: May 31st, 2020
Protecting your privacy is very important to us at Crunch Cloud Analytics LLC (“Crunch”, “We”, “Us”, or “Our”), and we use our privacy and cookies notice to explain our practices regarding our collection and use of information that we receive through the online analytic services provided at www.crunch.io, and other related websites designated by Crunch (“Services”). This privacy and cookies notice applies to only those websites, services and applications included within our Services where this privacy notice is posted, and does not apply to any third-party websites, services or applications, even if they are accessible through our Services.
What this notice covers
Crunch is responsible for collecting and using data in a responsible and safe way, and that starts with clearly telling you how we collect, use and protect your personal data. This privacy and cookies notice sets out:
- What kind of personal data we may collect from you;
- How and why we collect and use your personal data;
- Why we may share personal data with other organisations; and
- The rights and choices you have when it comes to your personal data.
We’ve tried to make our privacy and cookies notice as easy to read as possible, but if anything in here is unclear, please contact us at firstname.lastname@example.org, and we’ll be happy to clear it up.
Personal data we collect
In this section we explain what personal data we may collect in providing our Services.
Personal data collected from you
If you are a Crunch customer, you provide us with information that enables us to provide our Services to you – from your day-to-day interactions with our sales and customer support teams, to your use of the Crunch tool. If you are not a Crunch customer, we may respond to any enquiry you may send to us, or otherwise contact you to tell you about our products and services. You can find out more about the data we collect from you in the table below.
|When you contact us via the forms on our website, we collect:
- Personal details such as your name, address, email, telephone number and information about your company.
|When you create an account with Crunch, we collect:
- Your account login details, which will be your email address and the password or other identifying tokens that you have chosen.
- A history of your enquiry and our correspondence with you.
|When you use our Services, we collect:
- Statistical data about your use of our Services (“Log Data”), which may include, for example, your IP address, browser type, operating system, and information about how you use our Services.
- Any information you provide when you contact us for assistance, for example if you have forgotten your password, need to report a bug or have any general queries.
|When you register for our conferences, events and/or training sessions, we collect:
- Personal details such as your name, address, email, telephone number and information about your company.
We will only retain your personal data for as long as we need to in order to fulfil the uses we describe in this notice or to comply with statutory requirements, or until you exercise your right to erasure (which is explained in the ‘Your Rights’ section below).
Personal data collected from other sources
We may also use personal data about you that we have obtained from other sources, such as companies that sell data.
We may also use personal data about you that we have obtained from other sources:
- Companies that sell data: for example, we may purchase access to a database to find consumer insights and market research contacts for use in our marketing and lead generation.
How and why we use your personal data, and who we share it with
In this section we explain how and why we use your personal data, and provide information about the organisations we may share it with.
We use the data that you share with us, or that we receive from the other sources, to contact you about our products and services and to give you the best possible experience as a customer. Our use of personal data is described in more detail in the table below.
|We use personal data to...
|Create and authenticate your Crunch account
- We will use your account details to set up your account, and to authenticate your identity each time you log on.
- We may contact you about the products and services we provide.
|Communicate with you about our Services
- We will use your contact information to respond to your queries and generally support your use of our Services.
|Monitor your use of our Services
- We use Log Data to help us understand your use of our tools to fix bugs, respond to any issues or questions you may have and to improve, customize and enhance our Services by expanding their features and functionality and tailoring them to user needs and preferences.
|Send you marketing communications
- Where we are permitted to do so, we will use your contact details to contact you (by email, post or telephone) about our products and services. You can unsubscribe from receiving future marketing communications at any time.
In order to use personal data in the ways described above, we may share it with certain third parties. Information about the types of organisations we may share data with is provided below.
From time-to-time, our customers request usage reports for our Services. For example, some clients use information about the use of our Services to understand the penetration of the tool within the business. We may also share your name with other customers or prospective customers as part of a testimonial, but only with your permission.
|Our service providers
We work with trusted service providers that carry out certain functions on our behalf so we can provide our services to you.
These organisations process data on our behalf. They only have access to the personal data that they absolutely need to provide the specific service to us, and in all cases we have contractual safeguards in place to ensure that they do not disclose or use it for any other purposes. In some cases, these organisations may need to process your personal data for their own specific purposes, for example to ensure they are compliant with regulations or laws governing their own sectors.
We use the following service providers –
These circumstances are unusual, but we may share personal data with other organisations if:
- We have to share your information to comply with legal or regulatory requirements (or we reasonably believe that we need to disclose your information for such purposes);
- We need to share personal data in order to establish, exercise or defend our legal rights, including with our legal and other professional advisors;
- We restructure our business or if we buy or sell any business or assets we may share your data with the prospective buyer or seller;
- All or substantially all of our company assets are acquired by another party, your data will be one of the transferred assets.
Legal grounds for processing your personal data
We are committed to the lawful, fair and transparent use of personal data. In processing personal data for the purposes of providing our customers with our products and services, we process your personal data on the grounds that our processing is necessary for legitimate interests we pursue as a business, namely that our business relies entirely on the ability to use your personal data to provide our Services.
If we send you marketing communications to tell you about our products and services, we rely on one of the following legal grounds for processing:
- Legitimate interests; or
Because marketing rules vary between countries, the legal ground for processing that we rely on will depend on your geographic location.
If you have any questions about the grounds under which we process your personal data, or would like to find out more about the approach we take to determine that these grounds apply, please contact us using the contact details in the ‘How to contact us’ section.
Transferring personal data outside the EEA
Our servers are located in Ireland, so if you are based in Europe or the UK your data will remain in Europe. If you are located outside of Europe, your information may be transferred to, and maintained on, computers located outside of your state, province, country or other governmental jurisdiction where the privacy laws may not be as protective as those in your jurisdiction.
How we store and protect your personal data
We know how important it is to protect your personal data while we have it. This section describes some of the measures we take to ensure that it is kept secure.
We do everything we can to protect your personal data from loss or misuse, and from unauthorized access, disclosure, alteration and destruction. This section describes some of the measures we take to ensure that your personal data is secure:
- We use data centres that have a high level of physical security measures to host and protect your data and our systems;
- We conduct independent penetration tests on a periodic basis and are continuously scanning our systems and applications for vulnerabilities in our systems; if you ever think that you have found a security issue or vulnerability in one of our systems please let us know at email@example.com;
- We use encryption to secure your personal data whilst it is in transit using TLS;
- We allow access to attributable data (by which we mean data that directly identifies you) only to those Crunch employees who need it to carry out their job responsibilities, for example our account management team to allow them to respond to you when you contact us;
- We make security the responsibility of all our employees and we train our staff to identify security risks and protect your data.
Our website may from time to time contain links to and from other websites. If you follow a link to any of those websites, please note that those websites ought to have their own privacy notices and that we do not accept any responsibility or liability for those websites. Please check those privacy notices before you submit your information to those websites.
Emails and notifications
This section explains the choices you have when it comes to emails and notifications we may send to you.
If you are a Crunch customer, it is important that we are able to send you emails and notifications about your use of our Services. For example, we may contact you about your account, billing or the terms governing your access to or use of our Services. We may also contact you about other services that we offer, and for these messages, we rely on our legitimate interest in running our business as the legal grounds for this processing.
If you are a prospective client, we would like to send you marketing communications to tell you about our products and services, which could include information about industry insights, our Services and emails direct from our sales teams. Because marketing rules vary between countries, the legal ground for processing that we rely on will depend on your geographic location, however you will always be able to unsubscribe (either through your Account or by following the unsubscribe instructions provided in the e-mail you receive).
Cookies and similar technologies
We use “cookies” to improve your experience as you use our Services. This section tells you about the cookies that we use, what they do and your choices when it comes to cookies.
First party cookies
These cookies enable you to navigate our Services and use their features. The table below lists and describes the first party cookies that we use.
||What this cookie is used for
|User session cookies
- Authentication of your use of our Services
Third party cookies
The table below lists and describes the third party cookies that we are placed on our Services. You can learn more about the cookies we use by clicking on the links provided below.
||What these cookies are used for
||Cookies we use to achieve this
||We use analytics cookies to understand how you use our Services so we can monitor performance and ultimately improve them. For example, by understanding how you use certain features, we can identify and fix page errors and improve the design and navigation.
Cookies can also be used to deliver online ads and to track ad campaign performance and efficiency. The marketing cookies on our website collect information about online browsing, and use that information to create relevant online ads that you will see on third party websites, and for conversion tracking.
Your choices when it comes to cookies
Some of the emails we send to you may contain a ‘web beacon pixel’ or tracked links which allows us to identify when you have opened the email and to verify which links contained in the email you have accessed. We use this information to determine which parts of our emails are of most interest to you. You can delete the pixel by deleting the email.
This section explains the rights that you have in relation to the personal data that we hold about you.
You have certain rights in relation to the personal data that we hold about you, which are designed to give you more choice and control over your personal data. These rights are explained below.
||What does this mean?
||Is it available to you?
|The right to request access to personal data
||You can request a copy of the data we hold about you and related information
|The right to request rectification of personal data
||You can ask us to correct any inaccurate data about you and to complete any incomplete data that we hold about you (either by using the contact details below or via the settings feature on your Account profile).
|The right to request erasure of personal data
||You can request that we delete the personal data we hold about you
||Yes, in certain situations
|The right to request a restriction on processing of personal data
||You can request that we restrict our use of your data to storage only, that we stop using it for all other purposes or that we retain data that was due for deletion.
||Yes, in certain situations
|The right to object to the processing of personal data
||You can object to certain types of processing of your personal data in certain specific circumstances
||Yes, in certain situations
|The right to opt out of Crunch selling personal data
||You can request that we not sell your personal data
||Yes, but please note we do not sell your data without your consent
|The right of data portability
||You have the right to receive a copy of your personal data in a structured and machine-readable format and, where possible, have this sent to another organisation
||Generally, no. This is because almost all of our processing relies on our ‘legitimate interests’ to process personal data
|The right to request information about personal data provided to third parties for marketing purposes
||California’s “Shine the Light” law (Civil Code Section 1798.83) permits residents of California to request information regarding our disclosure of information to third parties for their direct marketing purposes.
||Yes, if you are a resident of California
Automated decision making
We do not envisage that any decisions that will have a legal or other significant effect on you will be taken about you using purely automated means, however we will update this notice if this position changes and notify you of those changes.
Exercising your rights
You can exercise the rights described above by emailing firstname.lastname@example.org.
Once you have submitted your request we may contact you to request further information to authenticate your identity (because we want to make sure it is actually you requesting your data) or to help us to respond to your request. Except in rare cases, we will respond to you within 1 month of receiving this information or, where no such information is required, after we have received full details of your request. As noted above, while some rights apply generally, some are only available in certain circumstances, so if we feel that any right is not available to you we will let you know along with the reason for our decision.
If you are a resident of California, a person registered with your State’s government may act on your behalf to exercise any of these rights. While you have a right to request that we do not sell your data, please note that we would not sell your data without your consent. If you have given consent, you can withdraw it by contacting us at email@example.com.
Lodging a complaint with a regulator
You may have the right to lodge a complaint with a data protection regulator in a country you work or live. You can find the contact details of the appropriate regulator online, for example by searching for ‘Data Regulator’ and the appropriate country. However, we encourage you to contact us before making any complaint and we will seek to resolve any issues or concerns you may have.
If you have questions about this notice, or about how we collect, store and use personal data, you can contact us at firstname.lastname@example.org.
Updates to this notice
While we reserve the right to change this notice at any time, if we make any material changes we will notify you of those changes in an appropriate way, for example by posting them on our Services or by sending you an email or other notification. We will also update the “Last Updated Date” above to indicate when those changes will become effective.