Dataships – Who We Are
When we refer to ‘we’ (or ‘our’ or ‘us’), that means Dataships Inc. and Dataships Limited, trading collectively as ‘Dataships’. Dataships Inc is our parent company and based in the USA. Dataships Limited, our subsidiary, is based in Ireland and is our EU representative in line with the General Data Protection Regulation (GDPR).
For more information about who we are and what we do, visit the About Us page on the Dataships website.
Privacy Notice Overview
This privacy notice describes how and why we, as Data Controller, obtain, store and process personal data.
If you would like to understand how we process data as a Data Processor, please see our Data Processing Addendum, which can be found in our Privacy Center.
‘Personal data’ means any information relating to an identified or identifiable natural person. An identifiable natural person is one who can be identified, directly or indirectly, in particular by reference to an identifier such as a name, an identification number, location data, an online identifier or to one or more factors specific to the physical, physiological, genetic, mental, economic, cultural or social identity of that natural person.
We will process your personal data fairly, lawfully, and transparently. This privacy notice describes the personal data we are collecting about you and how it is used.
In the spirit of data privacy principles, we will only collect and use your personal data for the following purposes, to:
· provide our services
· improve our services
· make our marketing more relevant to you and your interests
· meet our legal responsibilities
Please do not hesitate to contact us if you have questions in addition to the information provided in this privacy notice – privacy@dataships.io
The Personal Data We Collect
Personal data means any information about an individual from which that person can be identified (otherwise known as Personally Identifiable Information – PII). It does not include anonymised data, where the identity and identifying information has been removed.
While our website and services are designed for a general audience, we will not knowingly collect any data from children under the age of 16 or sell products to children. If you are under the age of 16, you are not permitted to use or submit your data to the website.
Depending on the type and level of engagement you have with us, we may collect the following categories of personal data:
· From the Services: We receive and store information you provide directly to us. For example, when setting up new users, we collect Personal Information, such as name and e-mail address, to provide them with the Services. The types of information we may collect directly from our customers and their users include: names, usernames, work email addresses, postal addresses, phone numbers, transactional information, as well as any other contact or other information they choose to provide us or upload to our systems in connection with the Services.
· From our Website: We may collect any Personal Information that you choose to send to us or provide to us, for example, on our “Sign Up” online form. If you contact us through the Website, we will keep a record of our correspondence.
Information We Automatically Collect:
When you use our Services:
· Usage information – we keep track of user activity in relation to the types of Services our customers and their users use, the configuration of their computers, and performance metrics related to their use of our Services.
· Log information – we log information about our customers and their users when you use one of our Services including Internet Protocol (“IP”) address.
· Information collected by cookies and other similar technologies – we use various technologies to collect information which may include saving cookies to users’ computers. For example, if you allow cookie tracking when you visit the Website, we collect certain information related to your device, such as your device’s IP address, referring website, what pages your device visited, and the time that your device visited our Website. See our ‘Cookies’ policy for more detail.
How We Collect Your Data
We may collect your personal data in one of the following ways:
· When you visit our website
· When you download a form or guide
· When you create an account with us
· When you subscribe to our newsletter or blog
· When you engage with us on social media
· When you contact us with queries using our website chatbot
· When you review our services
· When you apply for an employment vacancy with Dataships
We may also receive personal data about you from various third parties, including:
· Usage Analytics from providers such as Google Analytics. Please see further information in the section entitled ‘Our use of Analytics’ below.
· Contact Data from online form providers such as Hubspot.
· Transaction and Billing Data from our payment providers, such as Stripe and PayPal.
How We Use Your Personal Data
We will only collect and process your personal data where we have a legal basis to do so.
As a data controller, the legal basis for our collection and use of your personal data varies depending on the manner and purpose for which we collected it. We will only collect personal data from you when:
· We have your consent to do so, or
· We need your personal data to perform a contract with you. For example, to provide you with our data privacy software, or
· Pursuing our legitimate interests in a way that you might reasonably expect to be a part of running our business and that does not significantly impact your interests, rights, and freedoms, for example, communicating with you if we have a sufficient legal ground based on the e-marketing laws in your country
· We have a legal obligation to collect or disclose personal data from you (e.g., in suspected instances of fraud where we need to give personal data to a relevant government body).
Why we process your personal data:
We process your personal data in order to fulfil any of the activities below:
· Set up a user account with Dataships
· Provide, operate, and maintain our services
· Provide marketing communications to existing customers or subscribed users
· Process and complete transactions, and send related information, including transaction confirmations and invoices
· Manage our customers’ use of our services, respond to enquiries and comments, and provide customer service and support
· Send customers technical alerts, updates, security notifications, and administrative communications
· Investigate and prevent fraudulent activities, unauthorised access to our services, and other illegal activities
· For any other purposes about which we notify customers and users
How We Share Your Data
We sometimes share your personal data with our trusted categories of third parties we use to conduct our business. Our trusted categories of third parties include:
· Website provider
· Cloud service (SaaS) providers
· Social media providers
· Professional services providers (e.g., our lawyers, accountants, and insurance providers)
· E-marketing providers
· Advertising providers
· Recruitment partners
· Payment providers
A full list of our data sub-processors can be found in our Privacy Center.
As part of fraud monitoring and prevention, we may be legally required to share your personal data with government bodies and law enforcement. Please note that these bodies may retain a record of the information that we provide to them for this purpose.
Marketing preferences
We may send you direct marketing communications, product information and promotional offers:
- · If you have consented to receiving such communications from us
- · If we have an existing business relationship with you and can rely on your implied consent
- · If you are from a country where the laws permit us to send you such communications based on our legitimate interests, if you have bought a product or service from us, and have not opted out of receiving communications from us (for example the EEA or UK)
- · If you are from a country where the laws permit us to send you such communications
The marketing communications we send will be in relation to our own products or services, your personal data will not be used for third-party direct marketing unless separate explicit consent has been collected for that or you are from a country where the laws permit such processing.
You will always have full control of your marketing preferences. If you do not wish to continue receiving marketing information from us at any time:
- · You can unsubscribe by using the unsubscribe directions or link included in marketing communication from us; or
- · You may withdraw your consent by contacting us by e-mail at privacy@dataships.io
Customers located in certain regions, such as the EEA and UK, also have the right to object to their personal data being processed for direct marketing purposes at any time. If you would like to object you can contact us by e-mail at privacy@dataships.io
We will process all requests as soon as possible, but please note that due to the nature of our IT systems and servers it may take a few days for any opt-out request to be implemented.
Our use of Cookies
Our use of Cookies
Our website uses cookies. They help us to provide you with the very best experience when you browse our website and to make improvements to our website. You can accept or reject cookies by clicking on the cookie consent banner or by navigating to the ‘Cookies Preferences’ Area in the Dataships Privacy Center.
For detailed information on the cookies which we use and the reasons why we use them, please refer to our Cookie Policy and Cookie Declaration.
Our use of Analytics
We use analytics tools on our websites and services. For example, we use tools such as Google Analytics, Hotjar, and Amplitude to analyse and improve our suite of product features, website content, knowledge center content and marketing campaigns.
If you would like any further information about the data collected by these third parties or the way in which the data is used, please have a look at our List of Sub-processors or contact us on privacy@dataships.io.
Our use of Targeted Advertising
Dataships use the following targeted advertising tools to advertise our services:
· Facebook (including Instagram)
· TikTok
· Google Ads
We use these tools to deliver relevant content to you in marketing communications (where applicable), and to measure the effectiveness of the advertising provided.
If you would like any further information about the data collected by these third parties or would like to opt-out of targeted advertising, please contact us on privacy@dataships.io. Similarly, Dataships account holders can opt out of targeted advertising by managing their preferences in the Dataships Privacy Center.
Links to other websites and third parties
Our website may include links to social media platforms and other websites. If you follow a link to any of these platforms or websites, please note that they their own privacy policies and that we do not accept any responsibility or liability for these policies. Please check these policies before you submit any personal data to their platforms or websites.
Securing your Data
The communication between your browser and our website uses a secure encrypted connection wherever your personal data is involved.
We have put in place physical, electronic and managerial security procedures in the storage and disclosure of your personal data to protect it against accidental loss, destruction or damage. Nevertheless, any data transmission over the internet or by any other means can never be fully secure, such is the character of the internet, and provision of personal data by you to us is at your own risk. We take all reasonable measures to protect your personal data by putting appropriate technical and operational security measures in place.
When we disclose your personal data to trusted third parties (for the purposes set out in this privacy notice), we require all third parties to have appropriate technical and operational security measures in place to protect your personal data, and we work with them to ensure that your data protection and privacy rights are respected. Where your personal data is shared with a third party, it must only be used for the purposes for which it was supplied.
In the unfortunate event of a personal data breach, we will notify you and any applicable data protection authority when we are legally required to do so.
Retaining your Data
We will not keep your personal data for longer than is necessary and when we no longer need to keep it, we will securely destroy, delete or anonymise it in line with our Data Retention policy.
Having obtained your consent (or other legal basis) to contact you, we will retain your personal data for marketing and analysis purposes until you withdraw your consent. If you choose to withdraw your consent to marketing, we will delete your personal data from our systems, unless we have another legal basis to retain it, which may include performance of our contract with you.
We may need to retain your personal data to satisfy our legal obligations, to deal with complaints and queries, in order to resolve, litigate or defend a dispute and to prevent fraud and abuse.
Transferring Your Data Outside the EEA
Our servers are located in the European Union.
However, the personal data we collect from you may be transferred to, and stored at, destinations outside the European Economic Area (“EEA”) using legally provided mechanisms to lawfully transfer data across borders. It may also be processed by staff operating outside the EEA who work for us or for one of our suppliers. Such staff may be engaged in, among other things, the provision of our services to you. We will take all steps necessary to ensure that your data is treated securely and in accordance with this privacy notice.
Please contact us if you want further information on the countries to which we may transfer personal data and the specific mechanism used by us when transferring your personal data outside the EEA – privacy@dataships.io.
Your Rights & Our Commitment to You
You have several rights under the data privacy legislation and Dataships is committed to you being able to freely exercise your Rights. Where possible, we have incorporated automated tools on our website that enable you to facilitate your rights in real-time. Use the Dataships Privacy Center to access and manage your personal data that we process and manage your preferences. You are not required to pay any charge for exercising your rights.
EEA and UK General Data Protection Regulation (EU GDPR and UK GDPR)
Your rights include, under certain circumstances, the right to:
Be informed: you have the right to be informed if and how your personal data is being processed.
Access, rectification, or erasure: you have the right of access to personal data we hold about you in our records. You are also entitled to have your personal data corrected if it is inaccurate, or to have it erased if we do not have a legitimate reason for retaining your data.
To request data portability: for personal data which you have provided to a controller, where processing was based on your consent, or where processing is done by automated means, you have the right to obtain a digital copy of your personal data, request the transfer of your personal data to another company or request to move your data from one IT system to another in a safe and secure way.
To request restriction of processing: you have the right to restrict the processing of your personal data where you are contesting the accuracy of that information, you have objected to processing (as described below), or where the processing is unlawful. Where processing is restricted, we are may need to retain sufficient information about you to ensure that the restriction is respected in future.
To object to automated decision-making including profiling: you have the right not to be the subject of any automated decision-making or profiling by us.
To withdraw consent: in cases where we are relying on your consent for the processing of your personal data, you have the right to withdraw your consent at any time. In respect of the e-marketing we conduct, an unsubscribe (withdraw consent) option is included with every e-marketing communication we send.
To object to processing: where your personal data is being processed based on the legitimate interests of a data controller or third party, you have the right to object to that processing.
To complain to the relevant supervisory authority: should you have any concerns or complaints regarding the way in which we process your data, please email us directly at privacy@dataships.io. You also have the right to make a complaint to a relevant data protection authority. For EU citizens, the relevant data protection authority for Dataships is the Irish Data Protection Commission (DPC) in Ireland. Please visit https://www.dataprotection.ie/ for contact details.
Cookies Preferences: you can accept or reject cookies by navigating to the ‘Cookies Preferences’ Area in the Dataships Privacy Center. You can also do so by adjusting your web browser controls. Please consult our Cookie Policy for more information about our use of cookies on the Website and how to accept and reject them.
The California Consumer Privacy Act (CCPA)
The California Consumer Privacy Act (“CCPA”) provides consumers with specific rights regarding their Personal Information. You have the right to request that businesses subject to the CCPA (which may include our Merchants with whom you have a relationship) disclose certain information to you about their collection and use of your Personal Information over the past 12 months. In addition, you have the right to ask such businesses to delete Personal Information collected from you, subject to certain exceptions. If the business sells Personal Information, you have a right to opt-out of that sale. Finally, a business cannot discriminate against you for exercising a CCPA right.
When offering services to its Merchants, Dataships acts as a “service provider” under the CCPA and our receipt and collection of any consumer Personal Information is completed on behalf of our Merchants in order for us to provide the Service. Please direct any requests for access or deletion of your Personal Information under the CCPA to the Member with whom you have a direct relationship.
Consistent with California law, if you choose to exercise your applicable CCPA rights, we won’t charge you different prices or provide you a different quality of services. If we ever offer a financial incentive or product enhancement that is contingent upon you providing your Personal Information, we will not do so unless the benefits to you are reasonably related to the value of the Personal Information that you provide to us.
Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA)
Under Canada’s Personal Information Protection and Electronic Documents Act (PIPEDA) your rights include, with certain legal restrictions, the below:
Right of Access or Rectification: you have the right to ask us for copies of the personal data we hold about you. You are also entitled to have your personal data corrected or updated if it is inaccurate.
Right to Withdraw Consent: in cases where we are relying on your consent for the processing of your personal data, you have the right to withdraw your consent at any time. In respect of the e-marketing we conduct, an unsubscribe (withdraw consent) option is included with every e-marketing communication we send.
Changes to this privacy notice
We may update this privacy notice from time to time and we will inform all our paying customers and users subscribed to receive digital communication from us any changes.
How to contact us
We welcome feedback and are happy to answer any questions you may have about your data.
You can contact us at:
Email: privacy@dataships.io
This notice was most recently updated: 3rd of May 2022