Our privacy commitment: Apostle has never sold your information to someone else for advertising, or made money by showing you other people's ads, and we never will. This has been our approach for almost 9 years, and we remain committed to it. This policy tells you what information we do collect from you, what we do with it, who can access it, and what you can do about it.
We only collect the information that we actually need. Some of that is information that you actively give us when you sign up for an account, register for an event, ask for customer support, or buy something from us. We store your name and contact information, but we don't store credit card numbers (except with your permission and in one of our secured payment gateways).
When you visit one of our websites or use our software, we automatically log some basic information like how you got to the site, where you navigated within it, and what features and settings you use. We use this information to improve our websites and services and to drive new product development.
We use your information to provide the services you've requested, create and maintain your accounts, and keep an eye out for unauthorized activity on your accounts. We also use it to communicate with you about the products you're currently using, your customer support requests, new products you may like, chances for you to give us feedback, and policy updates. We analyze the information we collect to understand user needs and to improve our websites and services.
We're required to have a legal basis for collecting and processing your information. In most cases, we either have your consent or need the information to provide the service you've requested from us. When that's not the case, we must demonstrate that we have another legal basis, such as our legitimate business interests.
You can decline certain kinds of information use either by not providing the information in the first place or by opting out later. You can also disable cookies to prevent your browser from giving us information, but if you do so, certain website features may not work properly.
We limit access to your personal information to our employees. If we share your information with other parties (like developers, service providers, domain registrars, and reselling partners), they must have appropriate security measures and a valid reason for using your information, typically to serve you.
The European Economic Area (EEA) provides certain rights to data subjects (including access, rectification, erasure, restriction of processing, data portability, and the right to object and to complain). Apostle undertakes to provide you the same rights no matter where you choose to live.
If you handle other people's data using Apostle apps, such as information about your customers or employees, you are entrusting that data to us for processing. If you use the Apostle mobile app and give the app access to your photo library, you are entrusting data to us. The data you entrust to us for processing is called service data.
You own your service data. We protect it, limit access to it, and only process it according to your instructions. You may access it, share it through third-party integrations, and request that we export or delete it.
We hold the data in your account as long as you choose to use Apostle Services. After you terminate your account, your data will be deleted from our active database within 6 months and from our backups within 3 months after that.
If you are in the European Economic Area and you believe that someone has entrusted your information to us for processing (for instance, your employer or a company whose services you use), you can request certain actions from us regarding your data. To exercise those data rights, please contact the person or company that entrusted the data to us and we will work with them on your request.
There are some limitations to the privacy we can promise you. We will disclose personal information if it's necessary to comply with a legal obligation, prevent fraud, enforce an agreement, or protect our users' safety.
You can always contact us to: ask questions about our privacy practices, request a GDPR-compliant Data Processing Agreement, alert us if you believe we have collected personal data from a minor, or ask to have your personal information removed from our blogs or forums.
Apostle has worried about customer and user privacy for almost 9 years, long before it became fashionable, politically correct, or legally binding to take such a position. We ask for only the least amount of information necessary, gathering only what we believe is essential for doing business, or for the specific transaction at hand. We let customers know the information we have on them and allow them to opt out of specific engagements. But, by far, our biggest commitment is that we do not make a single dollar from advertising revenue—never have, never will—even from the free editions of our products. This means we avoid the fundamental conflict of interest between gathering customer information and fueling advertising revenue, and the unavoidable compromises in customer privacy that it brings.
The goal of this policy is to make explicit the information we gather on our customers and users, how we will use it, and how we will not. This policy is unfortunately longer than we would like, but we must unambiguously address all the relevant cases. We will try and keep the language simple and direct as much as possible.
This part deals with how Apostle collects and uses information about website visitors, potential customers, users of Apostle's products and services, and others who contact Apostle through forms or email addresses published on or linked to our websites.
This part deals with how Apostle handles data that you entrust to Apostle when you use our products and services, or when you share any personal or confidential information with us while requesting customer support.
We collect information about you only if we need the information for some legitimate purpose. Apostle will have information about you only if (a) you have provided the information yourself, (b) Apostle has automatically collected the information, or (c) Apostle has obtained the information from a third party. Below we describe the various scenarios that fall under each of those three categories and the information collected in each one.
In addition to the purposes mentioned above, we may use your information for the following purposes:
Legal processing bases applicable to Apostle: If you are an individual from the European Economic Area (EEA), our legal basis for information collection and use depends on the personal information concerned and the context in which we collect it. Most of our information collection and processing activities are typically based on (i) contractual necessity, (ii) one or more legitimate interests of Apostle or a third party that are not overridden by your data protection interests, or (iii) your consent. Sometimes, we may be legally required to collect your information, or may need your personal information to protect your vital interests or those of another person.
Withdrawal of consent: Where we rely on your consent as the legal basis, you have the right to withdraw your consent at any time, but this will not affect any processing that has already taken place.
Legitimate interests notice: Where we rely on legitimate interests as the legal basis and those legitimate interests are not specified above, we will clearly explain to you what those legitimate interests are at the time that we collect your information.
Opt out of non-essential electronic communications: You may opt out of receiving newsletters and other non-essential messages by using the ‘unsubscribe’ function included in all such messages. However, you will continue to receive notices and essential transactional emails.
Disable cookies: You can disable browser cookies before visiting our websites. However, if you do so, you may not be able to use certain features of the websites properly.
Optional information: You can choose not to provide optional profile information such as your photo. You can also delete or change your optional profile information. You can always choose not to fill in non-mandatory fields when you submit any form linked to our websites.
Third-party service providers: We may need to share your personal information and aggregated or de-identified information with third-party service providers that we engage, such as marketing and advertising partners, event organizers, web analytics providers and payment processors.
These service providers are authorized to use your personal information only as necessary to provide these services to us.
Reselling partners: We may share your personal information with our authorized reselling partners in your region, solely for the purpose of contacting you about products that you have downloaded or services that you have signed up for. We will give you an option to opt out of continuing to work with that partner.
Other cases : Other scenarios in which we may share the same information covered under Parts I and II are described in Part III.
If you are in the European Economic Area (EEA), you have the following rights with respect to information that Apostle holds about you. Apostle undertakes to provide you the same rights no matter where you choose to live.
Right to access: You have the right to access (and obtain a copy of, if required) the categories of personal information that we hold about you, including the information's source, purpose and period of processing, and the persons to whom the information is shared
Right to rectification: You have the right to update the information we hold about you or to rectify any inaccuracies. Based on the purpose for which we use your information, you can instruct us to add supplemental information about you in our database.
Right to erasure: You have the right to request that we delete your personal information in certain circumstances, such as when it is no longer necessary for the purpose for which it was originally collected.
Right to restriction of processing: You may also have the right to request to restrict the use of your information in certain circumstances, such as when you have objected to our use of your data but we need to verify whether we have overriding legitimate grounds to use it.
Right to data portability: You have the right to transfer your information to a third party in a structured, commonly used and machine-readable format, in circumstances where the information is processed with your consent or by automated means.
Right to object: You have the right to object to the use of your information in certain circumstances, such as the use of your personal information for direct marketing.
Right to complain: You have the right to complain to the appropriate supervisory authority if you have any grievance against the way we collect, use or share your information. This right may not be available to you if there is no supervisory authority dealing with data protection in your country.
Information provided in connection with services: You may entrust information that you or your organization (“you”) control, to Apostle in connection with use of our services or for requesting technical support for our products. This includes information regarding your customers and your employees (if you are a controller) or data that you hold and use on behalf of another person for a specific purpose, such as a customer to whom you provide services (if you are a processor). The data may either be stored on our servers when you use our services, or transferred or shared to us as part of a request for technical support or other services.
Information from mobile devices: When you elect to allow it, our mobile application has access to the camera, and photo library of your mobile device. Our application requires such access to provide its services. You may disable the mobile applications' access to this information at any time by editing the settings on your mobile device. (All the information entrusted to Apostle is collectively termed “service data”)
We recognize that you own your service data. We provide you complete control of your service data by providing you the ability to (i) access your service data, (ii) share your service data through supported third-party integrations, and (iii) request export or deletion of your service data.
We process your service data when you provide us instructions through the various modules of our services. For example, when you send inputs through Apostle Connect, we will need access to your photo library or camera (for an instant shot) in order to complete the request.
If you have enabled notifications on our mobile application, we will push notifications through a push notification provider such as Apple Push Notification Service and Google Cloud Messaging. You can manage your push notification preferences or deactivate these notifications by turning off notifications in the application or device settings.
Apostle and third-party sub-processors: In order to provide services and technical support for our product, the contracting entity within the Apostle engages other entities and third parties.
Employees and independent contractors: We may provide access to your service data to our employees and individuals who are independent contractors of the Apostle involved in providing the services (collectively our “employees”) so that they can identify, analyze and resolve errors. We ensure that access by our employees to your service data is restricted to specific individuals. Our employees will also have access to data that you knowingly share with us for technical support or to import data into our products or services. We communicate our privacy and security guidelines to our employees and strictly enforce privacy safeguards within Apostle.
Collaborators and other users: Some of our products or services allow you to collaborate with other users or third parties. Initiating collaboration may enable other collaborators to view some or all of your profile information.
Other cases: Other scenarios in which we may share information that are common to information covered under Parts I and II are described in Part III.
We hold the data in your account as long as you choose to use Apostle Services. Once you terminate your Apostle user account, your data will eventually get deleted from active database during the next clean-up that occurs once in 6 months. The data deleted from active database will be deleted from backups after 3 months.
If you are from the European Economic Area and you believe that we store, use or process your information on behalf of one of our customers, please contact the customer if you would like to access, rectify, erase, restrict or object to processing, or export your personal data. We will extend our support to our customer in responding to your request within a reasonable timeframe.
Our products and services are not directed to individuals under 18. Apostle does not knowingly collect personal information from children who are under 18 years of age. If we become aware that a child under 18 has provided us with personal information, we will take steps to delete such information. If you believe that a child under 18 years has provided personal information to us, please write to firstname.lastname@example.org with the details, and we will take the necessary steps to delete the information we hold about that child.
We share your personal information and service data within the Apostle. By accessing or using our products and services or otherwise providing personal information or service data to us, you consent to the processing, transfer, and storage of your personal information or Service Data within the European Economic Area (EEA).
To enable you to be compliant with the data protection obligations under the General Data Protection Regulation, we are prepared to sign a Data Processing Agreement (DPA) that is based on Standard Contractual Clauses. You can request a DPA from Apostle via email@example.com. Once we get your request, we'll forward the DPA to you for your signature.
Our websites include social media widgets such as Facebook "like" buttons and Twitter "tweet" buttons that let you share articles and other information. These widgets may collect information such as your IP address and the pages you navigate in the website, and may set a cookie to enable the widgets to function properly. Your interactions with these widgets are governed by the privacy policies of the companies providing them.
We may be required by law to preserve or disclose your personal information and service data to comply with any applicable law, regulation, legal process or governmental request, including to meet national security requirements.
We may disclose personal information and service data to a third party if we believe that such disclosure is necessary for preventing fraud, investigating any suspected illegal activity, enforcing our agreements or policies, or protecting the safety of our users.
We do not intend to sell our business. However, in the unlikely event that we sell our business or get acquired or merged, we will ensure that the acquiring entity is legally bound to honor our commitments to you. We will notify you via email or through a prominent notice on our website of any change in ownership or in the uses of your personal information and service data. We will also notify you about any choices you may have regarding your personal information and service data.