Policies

Privacy Policy

Last updated: May 15, 2024

1. Introduction

At CarouApp, we respect your privacy and are committed to protecting your personal data. This Privacy Policy explains how we collect, use, and safeguard your information when you use our website and services.

Please read this Privacy Policy carefully. By using CarouApp, you acknowledge that you have read and understood this Privacy Policy and agree to its terms.

2. Information We Collect

We may collect the following types of information:

2.1 Personal Information

  • Account information: When you create an account, we collect your email address and password.
  • Profile information: You may provide additional information like your name and profile picture.
  • Communications: When you contact us, we collect the information you provide in those communications.

2.2 Usage and Technical Information

  • Usage data: Information about how you use our service and interact with our features.
  • Device information: We might collect information about your browser, operating system and other non-personally identifiable information
  • Cookies and similar technologies: We use cookies to enable certain functions of our service, maintain sessions, and gather analytics.

2.3 Content

We collect and store the content you create, upload, or share through our service, such as your carousel content, designs, and any media you incorporate into your carousels.

3. How We Use Your Information

We use the information we collect for the following purposes:

  • To provide, maintain, and improve our services
  • To personalize your experience with our service
  • To communicate with you about updates, features, offers, and policies
  • To monitor and analyze usage patterns and trends
  • To protect the security and integrity of our service
  • To enforce our terms of service and comply with legal obligations

4. Information Sharing and Disclosure

4.1 Service Providers

We may share your information with third-party vendors, service providers, and contractors who need access to your information to perform services on our behalf, such as hosting, analytics, customer support, and payment processing.

4.2 Business Transfers

If CarouApp is involved in a merger, acquisition, or sale of all or a portion of its assets, your information may be transferred as part of that transaction. We will notify you via email and/or a prominent notice on our website of any change in ownership or uses of your information.

4.3 Legal Requirements

We may disclose your information if required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

5. Data Security

We implement appropriate technical and organizational measures to protect your personal information from unauthorized access, alteration, disclosure, or destruction. However, no method of transmission over the Internet or method of electronic storage is 100% secure, and we cannot guarantee absolute security.

6. Your Rights and Choices

As we operate from Estonia in the European Union, we comply with the General Data Protection Regulation (GDPR). Under the GDPR, you have the following rights regarding your personal information:

  • Right to Access: You have the right to request copies of your personal data that we hold.
  • Right to Rectification: You have the right to request that we correct any inaccurate information we hold about you, and to complete any incomplete information.
  • Right to Erasure (Right to be Forgotten): You have the right to request that we delete your personal data in certain circumstances.
  • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal data in certain circumstances.
  • Right to Data Portability: You have the right to request that we transfer the data we have collected to another organization, or directly to you, in certain circumstances.
  • Right to Object: You have the right to object to our processing of your personal data in certain circumstances.
  • Rights Related to Automated Decision Making and Profiling: You have the right not to be subject to a decision based solely on automated processing.

To exercise these rights, please contact us at [email protected]. We will respond to your request within 30 days.

Data Controller

For the purposes of the GDPR, CarouApp is the data controller responsible for your personal information. Our contact details are:

CarouApp
Email: [email protected]

Legal Basis for Processing

We process your personal data on the following legal grounds:

  • Contract: Processing is necessary for the performance of a contract with you or to take steps at your request before entering into a contract.
  • Consent: You have given clear consent for us to process your personal data for a specific purpose.
  • Legitimate Interests: Processing is necessary for our legitimate interests or the legitimate interests of a third party, unless there is a good reason to protect your personal data which overrides those legitimate interests.
  • Legal Obligation: Processing is necessary for us to comply with the law.

Data Retention

We will retain your personal information only for as long as necessary to fulfill the purposes we collected it for, including for the purposes of satisfying any legal, accounting, or reporting requirements. To determine the appropriate retention period for personal data, we consider the amount, nature, and sensitivity of the personal data, the potential risk of harm from unauthorized use or disclosure of your personal data, the purposes for which we process your personal data and whether we can achieve those purposes through other means, and the applicable legal requirements.

Complaints

If you have a concern about our privacy practices, including the way we handled your personal information, you can report it to the Estonian Data Protection Inspectorate (Andmekaitse Inspektsioon) at [email protected] or visit their website at www.aki.ee.

7. Children's Privacy

Our service is not intended for use by children under the age of 13, and we do not knowingly collect personal information from children under 13. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us.

8. International Data Transfers

Our operations are based in Estonia (European Union). However, some of our service providers may be located outside of the European Economic Area (EEA). When we transfer personal data outside the EEA, we take steps to ensure that your data receives an adequate level of protection as required by applicable data protection laws.

These transfers are subject to appropriate safeguards, including standard contractual clauses approved by the European Commission or adequacy decisions for certain countries. You may contact us for more information about the safeguards we use for international transfers.

9. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this page. You are advised to review this Privacy Policy periodically for any changes.

10. Contact Us

If you have any questions or concerns about this Privacy Policy, please contact us at:

Email: [email protected]