Privacy Policy

Last updated: 30 May 2019

The website www.float.com (the “Website”) and Float online scheduling service (the “Service”) are made available by Pixel Paddock, LLC., a New York limited liability company (“Float”). We respect your privacy and recognize your need for appropriate protection and management of your personal information. Please read this Privacy Policy and Data Processing Agreement carefully to understand how your personal information is collected and used by us.

What information do we collect and why?

  • To continue to improve and provide a more relevant Website and Service experience, we and our sub-processors may use “cookies”, “web beacons”, and similar devices to track your activities anonymously.
  • During a Website visit, you may also elect to provide us personal information, such as your name, team name, email and a password, to create a free trial of the Service.
  • Information that you upload during the use of the Service may include the name, email, photo of yourself or your colleagues or employees. The information is displayed to users of your Float account, including the account owner, administrators and team members, as well as anyone else to whom you provide log in credentials. You are responsible for the data that you and users authorized by you input to the Service and for the compliance of such data with applicable law, including but not limited to data protection laws.
  • If you choose to subscribe to use the Service, we will ask you to provide credit card and account information in order to process your order. Financial information provided via our Website is transferred over a secure connection. We store a record of the payment transaction, including the last 4 digits of the credit card number, for account and billing purposes. We will not authorize the release of your personal or financial information to anyone not directly involved in processing the transaction. This information may be encrypted and stored for logging purposes in accordance with applicable regulatory requirements. Credit card numbers are used only for processing payments and are not used for any other purposes.
  • As part of the Service, we use certain third party processors to process some or all of your personal information. Our sub-contractors (third party agents) consist of cloud service providers, email delivery service and help-desk software providers. We have signed data processing contracts that comply with GDPR with each processor.

How do we use your personal information?

  • Float does not sell, trade or rent your personal information to others. We will not disclose your personal information to others without your express permission, other than as set forth in this privacy policy. Float does not supplement the personal information provided by you with information collected from other sources.
  • When you choose to provide us your email address, we may use it to reply to a message that you have sent to us. We may also use your email to contact you from time to time regarding updates or enhancements to the Float Service, or to our policies, or to send you other information that we feel may be of interest to you.

How do we protect your information?

  • We support AES 256-bit encryption and TLS 1.2 and one-way encrypt all passwords.
  • Our Website and Service are hosted by Google Cloud Platform in the United States.
  • Here is an overview of the steps we take to secure your data.

Your rights

The European Union’s General Data Protection Regulation (GDPR) introduced new privacy laws that impact your rights and our practices for how we store and protect your data. Your rights include:

  • Right to data portability: We offer a number of ways for you to export your data, via both CSV and API formats. Here is a guide we’ve put together to help you navigate these processes.
  • Right to object & right to rectify: All of your available personal data can be viewed and amended at any time via our web application or our API. You can also unsubscribe from our marketing email by following the unsubscribe link at the bottom of the message. If you are unsure of the type or accuracy of personal data we have stored, you can email us at support@float.com and we’ll clarify, and where necessary, correct.
  • Right to erasure: The account owner can delete your account from the account settings at any time. All your content will be deleted from our servers within 30 days. Individual people and project data can also be deleted at any time from within the app or via our API.
  • Prompt breach notification:You’ll be notified promptly of breaches involving your personal data per the GDPR requirements outlined in Art. 34. You can also monitor the status of our account-wide systems at any time from our live status page: http://status.float.com

You may also have the right to make a GDPR complaint to the relevant Supervisory Authority. A list of Supervisory Authorities is available here: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm. If you need further assistance regarding your rights, please contact us using the contact information provided below and we will consider your request in accordance with applicable law. In some cases our ability to uphold these rights for you may depend upon our obligations to process personal information for security, safety, fraud prevention reasons, compliance with regulatory or legal requirements, or because processing is necessary to deliver the services you have requested. Where this is the case, we will inform you of specific details in response to your request.

EU-US and Swiss-US Privacy Shield Framework

Pixel Paddock LLC complies with the EU-US Privacy Shield Framework and the Swiss-US Privacy Shield Framework as set forth by the US Department of Commerce regarding the collection, use, and retention of personal information from European Union member countries and Switzerland transferred to the United States pursuant to Privacy Shield. Pixel Paddock LLC has certified that it adheres to the Privacy Shield Principles with respect to such data. If there is any conflict between the terms in this privacy policy and the Privacy Shield Principles, the Privacy Shield Principles shall govern. To learn more about the Privacy Shield program, and to view our certification page, please visit www.privacyshield.gov.

Pixel Paddock LLC is subject to the investigatory and enforcement powers of the Federal Trade Commission (FTC) with regard to the Privacy Shield Frameworks.

Pursuant to the Privacy Shield Frameworks, EU and Swiss individuals have the right to obtain our confirmation of whether we maintain personal information relating to you in the United States. Upon request, we will provide you with access to the personal information that we hold about you. You may also correct, amend, or delete the personal information we hold about you. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data transferred to the United States under Privacy Shield, should direct their query to privacyshield@float.com. If requested to remove data, we will respond within a reasonable timeframe.

We will provide an individual opt-out choice, or opt-in for sensitive data, before we share your data with third parties other than our agents, or before we use it for a purpose other than which it was originally collected or subsequently authorized. To request to limit the use and disclosure of your personal information, please submit a written request to privacyshield@float.com.

We may also release your personal information when we are required to do so in response to a lawful request by public authorities, including to meet national security or law enforcement requirements, through subpoena, court order or other lawful demand by judicial or governmental authority or agency.

Pixel Paddock LLC ‘s accountability for personal data that it receives in the United States under the Privacy Shield and subsequently transfers to a third party is described in the Privacy Shield Principles. In particular, Pixel Paddock LLC remains responsible and liable under the Privacy Shield Principles if third-party agents that it engages to process the personal data on its behalf do so in a manner inconsistent with the Principles, unless Pixel Paddock LLC proves that it is not responsible for the event giving rise to the damage.

EU-US and Swiss-US Privacy Complaints

In compliance with the Privacy Shield Principles, Pixel Paddock LLC commits to resolve complaints about your privacy and our collection or use of your personal information transferred to the United States pursuant to Privacy Shield. European Union and Swiss individuals with Privacy Shield inquiries or complaints should first contact Pixel Paddock LLC at:

Glenn Rogers at Pixel Paddock LLC at privacyshield@float.com, or by mail at PO Box 4668 #93742, New York, NY 10163-4668.

Pixel Paddock LLC has further committed to refer unresolved privacy complaints under the Privacy Shield Principles to an independent dispute resolution mechanism, the BBB EU PRIVACY SHIELD, operated by the Council of Better Business Bureaus. If you do not receive timely acknowledgment of your complaint, or if your complaint is not satisfactorily addressed, please visit www.bbb.org/EU-privacy-shield/for-eu-consumers for more information and to file a complaint. This service is provided free of charge to you.

If your Privacy Shield complaint cannot be resolved through the above channels, under certain conditions, you may invoke binding arbitration for some residual claims not resolved by other redress mechanisms. See Privacy Shield Annex 1 at www.privacyshield.gov/article?id=ANNEX-I-introduction.