Success.ai Privacy Policy
Last Updated: October 17, 2024
Introduction
Welcome to Success.ai ("Success.ai," "we," "us," or "our"). We are committed to protecting your privacy and ensuring transparency in how we collect, use, store, and share your personal information.
This Privacy Policy outlines our practices regarding the collection, use, and disclosure of personal data when you use our services, visit our website (www.success.ai), or interact with us in any way.
By accessing or using our services, you agree to the terms of this Privacy Policy.
If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at [email protected].
1. Consent
By using our services or providing personal information through our website or other platforms owned by Success.ai, you consent to the collection, processing, storage, and use of your personal data as described in this Privacy Policy. You have the right to withdraw your consent at any time, subject to legal or contractual restrictions and reasonable notice. You also have the right to request access to, rectification of, or erasure of your personal data, as well as the right to data portability.
2. Personal Data We Collect
We collect personal data to provide and improve our services, comply with legal obligations, and protect our legitimate interests. The types of personal data we collect include:
2.1 Identity and Contact Details
- Data Controller: Success.ai, a company registered under U.S. laws.
- Contact Email: [email protected]
2.2 Data Collected on the Site
When you subscribe to our services, create an account, or interact with our site, we collect and manage the following personal data:
- Personal Information: First name, last name, email address, login credentials (username and password), mailing address, country, phone number, and IP address.
- Professional Information: Job title, company name, industry, and Intra-community VAT number (if applicable).
- Financial Information: Payment details necessary for processing transactions (processed securely via Stripe).
- Technical Information: Domain names, browser type, operating system, device information, and browsing data collected through cookies and similar technologies.
- Interaction Data: Order history, customer service requests, complaints, incidents, and messages exchanged with us.
- Marketing Preferences: Your preferences in receiving marketing communications from us.
Note: We do not intentionally collect sensitive personal data such as government identifiers, complete credit card numbers, medical records, or other sensitive information. Please refrain from providing such data.
2.3 Information Collected Automatically
When you visit our website or use our services, we automatically collect certain information about your device and usage patterns:
- Usage Data: Information about how you use our website and services, including pages viewed, links clicked, and time spent on pages.
- Log Data: IP address, browser type, Internet service provider (ISP), referring/exit pages, date/time stamps, and clickstream data.
- Cookies and Similar Technologies: We use cookies, web beacons, and similar technologies to collect information about your interactions with our website. For more details, see our Cookie Policy.
2.4 Information from Third Parties
We may receive personal data about you from third parties, including:
- Data Providers: Publicly available sources, professional networking sites, and data aggregators.
- Partners and Affiliates: Companies with whom we have partnerships or data-sharing agreements.
- Service Providers: Entities that provide services on our behalf, such as payment processors, analytics providers, and marketing partners.
Third-Party Payment Processor: We use Stripe for payment processing. Stripe's Privacy Policy is available at https://stripe.com/privacy.
3. Purposes of Processing and Legal Basis
We process your personal data for the following purposes, each associated with a legal basis under applicable data protection laws (e.g., GDPR):
3.1 Provision of Services (Contractual Performance)
- Purpose: To create and manage your account, provide access to our services, process transactions, and facilitate verifications related to your account.
- Legal Basis: Processing is necessary for the performance of a contract to which you are a party.
3.2 Customer Support and Communication (Legitimate Interests)
- Purpose: To respond to your inquiries, provide customer support, send administrative information, and communicate with you about our services.
- Legal Basis: Processing is necessary for our legitimate interests in providing efficient customer service and improving user experience.
3.3 Marketing and Promotional Communications (Consent/Legitimate Interests)
- Purpose: To send newsletters, promotional materials, and information about our services and partner offers.
- Legal Basis: Processing is based on your consent (where required) or our legitimate interests in promoting our services.
3.4 Personalization and Analytics (Legitimate Interests)
- Purpose: To personalize content, conduct analytics, understand user behavior, and improve our services.
- Legal Basis: Processing is necessary for our legitimate interests in enhancing our services and user experience.
3.5 Legal Compliance and Security (Legal Obligations)
- Purpose: To comply with legal obligations, prevent fraud, detect and investigate prohibited or unlawful activities, and enforce our terms of use.
- Legal Basis: Processing is necessary for compliance with legal obligations and protection of vital interests.
3.6 Sharing B2B Contact Data Publicly (Legitimate Interests/Public Interest)
- Purpose: To collect, process, and share business contact information (B2B data) publicly to facilitate professional networking and business opportunities.
- Legal Basis: Processing is necessary for our legitimate interests in providing B2B services and, where applicable, is conducted in the public interest.
Note: We ensure that the sharing of B2B contact data complies with applicable laws and regulations, and we respect data subjects' rights to opt-out or object to such processing.
4. Newsletter and Marketing Communications
If you have subscribed to our newsletters or agreed to receive marketing communications, we may use your personal data to send you updates, promotions, and information about our services.
- Opt-Out: You can unsubscribe from our marketing emails at any time by clicking the "unsubscribe" link included in every email or by contacting us at [email protected].
- Preference Management: You may also update your communication preferences in your account settings.
5. Email Statistics
We may analyze email statistics to assess the performance of our email campaigns and improve our marketing strategies.
- Data Collected: Click rates, open rates, bounce rates, and other engagement metrics.
- Purpose: To understand how recipients interact with our emails and to enhance content relevance.
- Legal Basis: Processing is based on our legitimate interests in optimizing our marketing efforts.
6. Testimonials
We may publish customer testimonials on our website, which may include names, job titles, and company affiliations.
- Consent: We obtain your explicit consent before publishing any testimonial that includes your personal data.
- Withdrawal of Consent: If you wish to have your testimonial removed, please contact us at [email protected], and we will promptly address your request.
7. How We Share Your Personal Data
We may share your personal data with third parties under the following circumstances:
7.1 Service Providers and Partners
- Purpose: To facilitate the provision of our services, we may share personal data with trusted third-party service providers who assist us in operating our website, conducting our business, and providing services to you.
- Examples: Payment processors (e.g., Stripe), cloud hosting services, analytics providers, marketing partners, and customer support platforms.
- Data Processing Agreements: We require all service providers to maintain the confidentiality and security of your personal data and to process it only for the purposes we specify.
7.2 Legal Obligations and Protection
- Compliance with Laws: We may disclose your personal data to comply with legal obligations, court orders, or governmental requests.
- Protection of Rights: We may disclose data to enforce our terms of use, protect our rights, privacy, safety, or property, and that of our users and the public.
7.3 Business Transfers
- Corporate Transactions: In the event of a merger, acquisition, restructuring, sale of assets, or bankruptcy, your personal data may be transferred to a successor or affiliated entity.
- Notification: We will notify you of any change in ownership or use of your personal data, as well as any choices you may have regarding your personal data.
7.4 Aggregated and Anonymized Data
- Non-Identifiable Information: We may share aggregated or anonymized data that cannot reasonably be used to identify you, for analytics, marketing, or other business purposes.
7.5 Sharing B2B Contact Data Publicly
- Purpose: To facilitate professional networking and business opportunities, we may share publicly available B2B contact data.
- Data Shared: Professional contact information such as name, job title, company name, business email address, and phone number.
- Legal Compliance: We ensure that sharing of B2B data complies with applicable laws, and we provide mechanisms for individuals to opt-out or request removal of their data.
Note: We do not sell or rent your personal data to third parties for their marketing purposes without your explicit consent.
8. Your Data Protection Rights
Under applicable data protection laws (e.g., GDPR, CCPA), you have certain rights regarding your personal data:
8.1 Right to Access
- Description: You have the right to request confirmation as to whether we process your personal data and to access the personal data we hold about you.
- How to Exercise: Submit a request to [email protected].
8.2 Right to Rectification
- Description: You have the right to request correction of inaccurate or incomplete personal data.
- How to Exercise: Update your account information or contact us at [email protected].
8.3 Right to Erasure (Right to be Forgotten)
- Description: You have the right to request the deletion of your personal data under certain circumstances.
- How to Exercise: Submit a request to [email protected].
8.4 Right to Restrict Processing
- Description: You can request that we limit the processing of your personal data under specific conditions.
- How to Exercise: Contact us at [email protected].
8.5 Right to Data Portability
- Description: You have the right to receive your personal data in a structured, commonly used, and machine-readable format and to transmit it to another controller.
- How to Exercise: Submit a request to [email protected].
8.6 Right to Object
- Description: You have the right to object to the processing of your personal data for direct marketing purposes or when processing is based on legitimate interests.
- How to Exercise: Adjust your preferences in your account settings or contact us.
8.7 Right to Withdraw Consent
- Description: If processing is based on your consent, you have the right to withdraw it at any time.
- How to Exercise: Update your preferences or contact us.
8.8 Right to Lodge a Complaint
- Description: You have the right to lodge a complaint with a supervisory authority if you believe that our processing of your personal data violates applicable laws.
- Contact Information: [Insert relevant supervisory authority contact details]
Verification: We may request proof of identity before fulfilling your request to ensure the security of your personal data.
Response Time: We aim to respond to all legitimate requests within one month.
9. Google API Compliance
Our use of information received from Google APIs adheres to the Google API Services User Data Policy, including the Limited Use requirements.
- Data Access: When you connect your Google Account to our services, we access certain data, such as email content and contact lists, to provide our services.
- Data Use: We use this data solely to provide or improve our services and do not transfer it to third parties except as necessary to provide or improve the services, comply with applicable laws, or as part of a merger or acquisition.
- User Control: You can revoke our access to your Google Account at any time via your Google Account settings.
10. Third-Party Data
When using our services, we may have access to information contained in your email contact lists and email content.
10.1 Data Access and Use
- Contact Lists: We access your contact lists to facilitate email communications and other services.
- Email Content: We may process email content to provide services such as email tracking, analytics, and automation.
10.2 Data Security
- Access Control: Only authorized personnel have access to your contact lists and email content, and solely for purposes of providing support and improving our services.
- Data Storage: Your data is stored securely using industry-standard encryption and security protocols.
10.3 User Control
- Data Export: You can export your contact lists and email data at any time through your account settings.
- Modification and Deletion: You can modify or delete contacts from your account as needed.
11. Data Retention Periods
We retain your personal data only for as long as necessary to fulfill the purposes for which it was collected, including:
11.1 Data for Service Execution
- Retention Period: As needed to provide services, and up to 3 years after account closure, unless a longer period is required by law.
- Purpose: To comply with legal obligations, resolve disputes, and enforce agreements.
11.2 Marketing Data
- Retention Period: 3 years from the date of collection or your last active contact.
- Purpose: To send you marketing communications, unless you opt-out.
11.3 Legal and Regulatory Compliance
- Evidentiary Data: Retained for the statutory limitation period (generally 5 years) for legal defense and compliance purposes.
11.4 Data Subject Rights Requests
- Retention Period: Data used to verify identity is kept only for as long as necessary to process the request, then securely deleted.
11.5 Anonymized Data
- Purpose: We may retain anonymized or aggregated data indefinitely for statistical analysis and business purposes.
12. Data Storage and International Transfers
12.1 Location of Data Storage
- Data Hosting: Our servers are located within the European Union (EU) and the United States.
- Cloud Providers: We use reputable cloud service providers that comply with applicable data protection regulations.
12.2 International Data Transfers
- Cross-Border Transfers: Personal data may be transferred to countries outside your country of residence, including countries that may not provide the same level of data protection.
- Safeguards: We implement appropriate safeguards for international transfers, such as Standard Contractual Clauses approved by the European Commission or reliance on adequacy decisions.
12.3 Your Rights
- Information: You have the right to be informed about the transfer of your personal data to third countries and the safeguards in place.
- Objection: You may object to international transfers by contacting us.
13. Security Measures for Data Protection
We prioritize the security of your personal data and implement industry-standard security measures to protect it from unauthorized access, disclosure, alteration, or destruction.
13.1 Technical and Organizational Measures
- Encryption: Data is encrypted in transit and at rest using secure protocols (e.g., SSL/TLS).
- Access Control: Strict access controls to personal data, limited to authorized personnel with a need-to-know basis.
- Firewalls and Intrusion Detection: Use of firewalls, intrusion detection systems, and regular security assessments.
13.2 Incident Response
- Security Breach Notification: In the event of a data breach, we will notify affected individuals and regulatory authorities as required by law.
- Remediation: We will take prompt action to mitigate any potential harm and prevent future occurrences.
13.3 User Responsibilities
- Account Security: You are responsible for maintaining the confidentiality of your account credentials and for restricting access to your account.
- Awareness: Be vigilant against phishing and other unauthorized attempts to access your personal data.
Disclaimer: While we strive to protect your personal data, no method of transmission over the Internet or electronic storage is completely secure. We cannot guarantee absolute security.
14. Cookie Policy
Our website uses cookies and similar technologies to enhance your experience and analyze usage.
14.1 What Are Cookies?
- Definition: Cookies are small text files stored on your device when you visit a website.
- Types of Cookies:some text
- Essential Cookies: Necessary for the website to function properly.
- Analytical/Performance Cookies: Collect information about how visitors use the website.
- Functionality Cookies: Remember your preferences and personalize content.
- Targeting/Advertising Cookies: Deliver relevant advertisements.
14.2 How We Use Cookies
- Purpose: To remember user preferences, analyze site traffic, and deliver personalized content and advertising.
- Third-Party Cookies: We may allow third parties to place cookies on our site for analytics and advertising purposes.
14.3 Your Choices
- Cookie Consent: Upon your first visit, you will be prompted to accept or decline cookies.
- Cookie Settings: You can manage your cookie preferences at any time through your browser settings.
- Opt-Out: You may opt-out of certain cookies, but this may affect your ability to use some features of our website.
15. Privacy Policy Changes
We reserve the right to update or modify this Privacy Policy at any time to reflect changes in our practices, legal requirements, or for other operational reasons.
15.1 Notification of Changes
- Advance Notice: We will notify you of significant changes via our website or email at least 30 days before they take effect.
- Effective Date: The "Effective Date" at the top of this Privacy Policy indicates when the policy was last revised.
15.2 Your Continued Use
- Acceptance of Changes: Your continued use of our services after the effective date constitutes your acceptance of the revised Privacy Policy.
15.3 Review Regularly
- Stay Informed: We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your personal data.
16. Children's Privacy
Our services are not intended for individuals under the age of 18.
- No Intentional Collection: We do not knowingly collect personal data from children under 18.
- Parental Involvement: If you are a parent or guardian and believe your child has provided us with personal data, please contact us.
- Data Deletion: If we become aware that we have inadvertently collected personal data from a child under 18, we will take steps to delete such information promptly.
17. Contact Us
If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:
- Email: [email protected]
We are committed to addressing your inquiries and resolving any concerns about your privacy.
Thank you for trusting Success.ai with your personal information. We are committed to protecting your privacy and ensuring transparency in all our data handling practices.
Important Notice
This Privacy Policy is intended to provide a comprehensive overview of our data practices. However, it may not cover all legal obligations specific to your business or jurisdiction. We strongly recommend consulting with a qualified attorney to review and tailor this Privacy Policy to ensure full compliance with all applicable laws and regulations.