Last updated: August 18, 2022
What information do we collect and why?
- To continue to improve and provide a more relevant Website and Service experience, we and our sub-processors may use “cookies”, “web beacons”, and similar devices to track your activities anonymously.
- During a Website visit, you may also elect to provide us personal information, such as your name, team name, email and a password, to create a free trial of the Service.
- Information that you upload during the use of the Service may include the name, email, photo of yourself or your colleagues or employees. The information is displayed to users of your Float account, including the account owner, administrators and team members, as well as anyone else to whom you provide log in credentials. You are responsible for the data that you and users authorized by you input to the Service and for the compliance of such data with applicable law, including but not limited to data protection laws.
- If you choose to subscribe to use the Service, we will ask you to provide credit card and account information in order to process your order. Financial information provided via our Website is transferred over a secure connection. We store a record of the payment transaction, including the last 4 digits of the credit card number, for account and billing purposes. We will not authorize the release of your personal or financial information to anyone not directly involved in processing the transaction. This information may be encrypted and stored for logging purposes in accordance with applicable regulatory requirements. Credit card numbers are used only for processing payments and are not used for any other purposes.
- As part of the Service, we use certain third party processors to process some or all of your personal information. Our sub-contractors (third party agents) consist of cloud service providers, email delivery service, digital behavioural analytics service, and help-desk software providers. We have signed data processing contracts that comply with GDPR with each processor.
How do we use your personal information?
- When you choose to provide us your email address, we may use it to reply to a message that you have sent to us. We may also use your email to contact you from time to time regarding updates or enhancements to the Float Service, or to our policies, or to send you other information that we feel may be of interest to you.
How do we protect your information?
- We support AES 256-bit encryption and TLS 1.2 and one-way encrypt all passwords.
- Our Website and Service are hosted by Google Cloud Platform in the United States.
- Here is an overview of the steps we take to secure your data.
The European Union’s General Data Protection Regulation (GDPR) introduced new privacy laws that impact your rights and our practices for how we store and protect your data. Your rights include:
- Right to data portability: We offer a number of ways for you to export your data, via both CSV and API formats. Here is a guide we’ve put together to help you navigate these processes.
- Right to object & right to rectify: All of your available personal data can be viewed and amended at any time via our web application or our API. You can also unsubscribe from our marketing email by following the unsubscribe link at the bottom of the message. If you are unsure of the type or accuracy of personal data we have stored, you can email us at firstname.lastname@example.org and we’ll clarify, and where necessary, correct.
- Right to erasure: The account owner can delete your account from the account settings at any time. All your content will be deleted from our servers within 30 days. Individual people and project data can also be deleted at any time from within the app or via our API.
- Prompt breach notification:You’ll be notified promptly of breaches involving your personal data per the GDPR requirements outlined in Art. 34. You can also monitor the status of our account-wide systems at any time from our live status page: http://status.float.com
You may also have the right to make a GDPR complaint to the relevant Supervisory Authority. A list of Supervisory Authorities is available here: http://ec.europa.eu/justice/data-protection/bodies/authorities/index_en.htm. If you need further assistance regarding your rights, please contact us using the contact information provided below and we will consider your request in accordance with applicable law. In some cases our ability to uphold these rights for you may depend upon our obligations to process personal information for security, safety, fraud prevention reasons, compliance with regulatory or legal requirements, or because processing is necessary to deliver the services you have requested. Where this is the case, we will inform you of specific details in response to your request.