Effective date: January 15, 2020
Who We Are and How to Contact Us
Your Rights Relating To Your Personal Data
- Request access to your Personal Data. If you are within the EU, this enables you to receive a copy of the Personal Data we hold about you and to check that we are lawfully processing it.
- Request correction of the Personal Data that we hold about you. This enables you to have any incomplete or inaccurate information we hold about you corrected.
- Request erasure of your Personal Data. This enables you to ask us to delete or remove Personal Data where there is no good reason for us continuing to process it. You also have the right if you are within the EU to ask us to delete or remove your Personal Data where you have exercised your right to object to processing (see below).
- Object to processing of your Personal Data. This right exists where we are relying on a legitimate interest as the legal basis for our processing and there is something about your particular situation, which makes you want to object to processing of your Personal Data on this ground. You also have the right to object where we are processing your Personal Data for direct marketing purposes.
- Request the restriction of processing of your Personal Data. This enables you to ask us to suspend the processing of Personal Data about you, for example if you want us to establish its accuracy or the reason for processing it.
- Request the transfer of your Personal Data. If you are within the EU, we will provide to you, or a third party you have chosen, your Personal Data in a structured, commonly used, machine-readable format. Note that this right only applies to automated information which you initially provided consent for us to use or where we used the information to perform a contract with you.
- Withdraw consent. This right only exists where we are relying on consent to process your Personal Data (“Consent Withdrawal”). If you withdraw your consent, we may not be able to provide you with access to the certain specific functionalities of our Site. We will advise you if this is the case at the time you withdraw your consent.
How to exercise your rights. If you want to exercise any of the rights described above, please contact us using firstname.lastname@example.org
Typically, you will not have to pay a fee to access your Personal Data (or to exercise any of the other rights). However, except in relation to Consent Withdrawal, we may charge a reasonable fee if your request is clearly unfounded, repetitive or excessive, or, we may refuse to comply with your request in these circumstances.
We may need to request specific information from you to help us confirm your identity and ensure your right to access your Personal Data (or to exercise any of your other rights). This is a security measure to ensure that Personal Data is not disclosed to any person who has no right to receive it. We may also contact you to ask you for further information in relation to your request to speed up our response.
We try to respond to all legitimate requests within one month. Occasionally it may take us longer than a month if your request is particularly complex or you have made a number of requests. In this case, we will notify you and keep you updated.
We will reply to your complaint as soon as we can.
If you feel that your complaint has not been adequately resolved, please note that if you are in the EU the GDPR gives you the right to contact your local data protection supervisory authority.
Marketing Communications Preferences
You can ask us to stop sending you marketing messages or modify your email preferences at any time through any of the following methods:
- by following the opt-out links on any marketing message sent to you; or
- by contacting us at any time using email@example.com
Where you opt out of receiving these marketing messages, this will not apply to Personal Data provided to us as a result of emails relating to existing or pending hires, purchases or subscriptions using the Services or consent to direct marketing communications.
What Personal Data we collect
We use Personal Data we collect to provide the Services, personalize content, remember information to help you efficiently access your account, analyze how the Services are used, diagnose service or technical problems, maintain security, monitor aggregate metrics such as total number of visitors, traffic, and demographic patterns, and track user content and users as necessary to comply with the Digital Millennium Copyright Act and other applicable laws.
Information You Directly Provide to Us. There are many occasions when you provide information that may enable us to identify you personally (“Personal Data”) while using the Services. The Personal Data we may collect from you is outlined in the table below.
Category of Personal Data collected What this means Identity Data First name, last name, maiden name, last name, username or similar identifier, password, marital status, title, date of birth and gender, picture. Contact Data Your email address, home address, work address, billing address and telephone numbers. Professional Background Data Educational and professional history, interests and accomplishments, projects completed. Online Presence Data Links to your public account pages at social media websites, links to personal websites, your log-in credentials for Twitter or other third party sites and other online materials related to you. Financial Data Your bank account and payment card details. Transaction Data Any details about payments to and from you and other details of subscriptions and services you have purchased from us. Data in respect of your transactions with third parties (including your credit history). Content Data Any content you post to the Services not already included in another category, including without limitation, your profiles, preferences, settings, questions, answers, messages, comments, and other contributions on the Services, and metadata about them (such as when you posted them) (“Content”). Marketing and Communications Data Your preferences in receiving marketing from us and our third parties and your communication preferences. If you correspond with us by email or messaging through the Services, we may retain the content of such messages and our responses. Behavioral Data Inferred or assumed information relating to your behavior and interests, based on your online activity. This is most often collated and grouped into “segments”. Technical Data Internet protocol (IP) address, your login data, browser type and version, time zone setting and location, browser plug-in types and versions, operating system and platform and other technology on the devices you use to access this website or use our services.
Personal Data from Third Party Sources. In addition to the Personal Data that we collect directly from you (as described in the section immediately above this one), we may also collect certain of your Personal Data from third party sources, some of which may not be publicly available. Examples of these sources are broken down in the table below.
Third party data source Category(ies) or other types of Personal Data received. Social media sites
- Identity Data
- Contact Data
- Online Presence Data
- Identity Data
- Contact Data
- Marketing and Communications Data
- Behavioral Data
- Transaction Data
- Financial Data
- Content Data
- Behavioral Data
- Technical Data
- Behavioral Data
- Technical Data
- Identity Data
- Contact Data
- Behavioral Data
- Technical Data
- Online Presence Data
No Special Categories of Personal Data. We do not collect any “Special Categories of Personal Data” about you (this includes details about your race or ethnicity, religious or philosophical beliefs, sexual orientation, political opinions, trade union membership, information about your health and genetic and biometric data). Nor do we collect any information about criminal convictions and offences.
How We Use Your Personal Data and Why?
In respect of each of the purposes for which we use your Personal Data, the GDPR requires us to ensure that we have a legal basis for that use if you are within the EU. The legal bases depend on the Services you use and how you use them. This means we collect and use your Personal Data only where:
- We need it to provide you the Services, including to operate the Services, provide customer support and personalized features and to protect the safety and security of the Services;
- It satisfies a legitimate interest (which is not overridden by your data protection interests), such as for research and development, to market and promote the Services and to protect our legal rights and interests; or
- We need to process your data to comply with a legal or regulatory obligation.
We may also rely on your consent as a legal basis for using your Personal Data where we have expressly sought it for a specific purpose. If we do rely on your consent to a use of your Personal Data, you have the right to change your mind at any time (but this will not affect any processing that has already taken place). We have set out below, in a table format, more detailed examples of relevant purposes for which we may use your Personal Data.
Purpose Why do we do this Providing, updating, and maintaining our Services, Site and business To deliver the Services you have requested, including, for example, registering you as a user, managing your account and profile, and authenticating you when you log in. Processing payments To process payment for any purchases, subscriptions or sales made on our Site, to protect against or identify fraudulent transactions, and otherwise as needed to manage our business. Research and development To enable us to improve the Services and better understand our users and the markets in which we operate. For example, we may conduct or facilitate research and use learnings about how people use our Services and feedback provided directly to us to troubleshoot and to identify trends, usage, activity patterns, areas for additional features and improvement of the Services and other insights. We also test and analyze certain new features with some users before introducing the feature to all users. Communicating with users about the Services To send communications via email and within the Services, including, for example, responding to your comments, questions and requests, providing customer support, and sending you technical notices, product updates, security alerts, and administrative, billing and account management related messages. We may also provide tailored communications based on your activity and interactions with us. These communications are part of the Services and in most cases you cannot opt out of them. If an opt out is available, you will find that option within the communication itself or in your account settings. Providing customer support To resolve technical issues you encounter, to respond to your requests for assistance, comments and questions, to analyze crash information, to repair and improve the Services and provide other customer support. Enhancing security To keep our website, our Services and associated systems operational and secure, including, for example, verifying accounts and activity, monitoring and investigating suspicious or fraudulent activity and to identify violations of our terms and policies. Marketing, promoting and driving engagement with the Services and third-party products and services To send promotional communications that may be of specific interest to you, including, for example, by email and by displaying products, events, promotions and other information on our Site or other companies’ websites. These communications may be aimed at driving engagement and maximizing what you get out of the Services or promoting third-party products and services. You generally can control whether you receive these communications as described in this policy under Marketing Communications Preferences. To comply with applicable law, legal process and regulations and protect legitimate business interests As we believe is reasonably necessary to comply with a law, regulation, order, subpoena, rule of a self-regulatory organization or audit or to protect the safety of any person, to address fraud, security or technical issues, or to protect our legal rights, interests and the interests of others, such as, for example, in connection with with the acquisition, merger or sale of securities or a business (e.g. due diligence).
What happens when you do not provide necessary Personal Data? Where we need to process your Personal Data either to comply with law, or to perform the terms of a contract we have with you and you fail to provide that data when requested, we may not be able to perform the contract we have or are trying to enter into with you (for example, to provide you with the functionalities of the Services). In this case, we may have to stop you using our Services.
What are cookies? When you visit the Services, we may send one or more “cookies“ – small data files – to your computer to uniquely identify your browser and let us help you log in faster and enhance your navigation through the Site. A cookie may convey anonymous information about how you browse the Services to us so we can provide you with a more personalized experience, but does not collect personal information about you. A persistent cookie remains on your computer after you close your browser so that it can be used by your browser on subsequent visits to the Service. Persistent cookies can be removed by following your web browser’s directions. A session cookie is temporary and disappears after you close your browser.
What cookies do we use? Our Site uses the following types of cookies for the purposes set out below:
How can I disable cookies? You can typically reset your web browser to refuse all cookies or to notify you when a cookie is being sent. In order to do this, follow the instructions provided by your browser (usually located within the “settings”, “help” “tools” or “edit” facility). Many browsers are set to accept cookies until you change your settings.
If you do not accept our cookies, you may experience some inconvenience in your use of our Services and some features of the Service may not function properly. For example, we may not be able to recognize your computer or mobile device and you may need to log in every time you visit our Services.
Log Files: Log file information is automatically reported by your browser each time you access a web page. When you use the Services, our servers automatically record certain information your web browser sends whenever you visit any website. These server logs may include information such as your web request, Internet Protocol address, browser type, referring / exit pages and URLs, number of clicks, domain names, landing pages, pages viewed, and other such information.
Clear GIFs Information (Web Beacons): When you use the Services, we may employ clear GIFs (also known as web beacons or tracking pixels) from an ad network to anonymously track online usage patterns. Web beacons allow ad networks to provide anonymized, aggregated auditing, research and reporting for us and for advertisers. Web beacons also enable ad networks to serve targeted advertisements to you when you visit other websites. Because your web browser must request these advertisements and web beacons from the ad network’s servers, these companies can view, edit, or set their own cookies, just as if you had requested a web page from their site. You may be able to opt-out of web beacon tracking by adjusting the settings on your browser. In addition, we may also use clear GIFs in HTML-based emails sent to our users to track which emails are opened by recipients. The information collected is used to enable more accurate reporting and make Smart Crowdfunding better for our users.
Third Party Services: We may use Google Analytics, Sentry, Segment, Intercom, and more tools to help understand use of the Services. These tools collect the information sent by your browser as part of a web page request, including cookies and your IP address. These tools also receive this information and their use of it is governed by their respective privacy policies.
Use of Twitter User Data: If you choose to connect a Twitter profile to your account, we will access certain information obtained from Twitter regarding your account. In particular we may store your name and email address as well as information on the particular profile you connect, including your followers and profile picture. This data will only be used by us to provide you with the service you expect and will not be shared with any third parties.
Use of Facebook User Data: If you choose to connect a Facebook profile to your account, we will access certain information obtained from Facebook regarding your account. In particular we may store your name and email address as well as information on the particular profile you connect, including your profile picture. This data will only be used by us to provide you with the service you expect and will not be shared with any third parties.
Who We Share Your Personal Data With
We may share your Personal with third parties in the ways that are described in the table below. We consider this information to be a vital part of our relationship with you.
Recipients Why we share it Our Affiliates Our affiliates may access your Personal Data to help us develop, maintain and provide our Services and help manage our customer relationships (including providing customer support, customer liaison, fund advisory services, etc). Service Providers Our service providers provide us support for our Services, including, for example, website and application development, hosting, maintenance, backup, storage, virtual infrastructure, payment processing, analysis, banking services, and other services for us, which may require them to access or use Personal Data about you. Professional Advisers Our lawyers, accountants, bankers, auditors and insurers may need to review your personal data to provide consultancy, compliance, banking, legal, insurance, accounting and similar services. Legal and Taxing Authorities, Regulators and Participants in Judicial Proceedings We may disclose your Personal Data if we believe it is reasonably necessary to comply with a law, regulation, order, subpoena, rule of a self-regulatory organization or audit or to protect the safety of any person, to address fraud, security or technical issues, or to protect our legal rights, interests and the interests of others, such as, for example, in connection with with the acquisition, merger or sale of securities or a business (e.g. due diligence). Advertisers and other Businesses Certain users of the Services may have access to your Personal Data for the purpose of enabling them to interact with you and more effectively offer and provide products and services to you through the Site (either alone or jointly with us) that may be targeted towards your background and preferences. We may also allow third parties, including ad servers or ad networks, to serve advertisements on the Site, and such third parties may be provided with access to your Personal Data to provide advertising tailored to your interests. Researchers To enhance the public understanding of patterns and trends in the markets served by our Services, we may provide Personal Data to third parties under confidentiality obligations such as, for example, academics or contractors for research purposes. API Users Certain third parties have API access to portions of the Site to enable businesses and startups to build affiliated services and products (either alone or jointly with us).
In addition, your Personal Data you choose to add to your profile as well as most Content you choose to post will be available for public viewing on the Service. If you want your information to remain private, don’t make it available to other users on our Site.
As we develop our business, we may buy or sell businesses or assets. In the event of a corporate sale, merger, reorganization, dissolution or similar event, we may also transfer your Personal Data as part of the transferred assets without your consent or notice to you.
We may also share non-Personal Data (such as anonymous usage data, referring/exit pages and URLs, platform types, number of clicks, etc.) with interested third parties to help them understand the usage patterns for certain Services or conduct independent research based on such anonymous usage data.
If you request that we remove your Personal Data, we will convey that request to any third party with whom we have shared your data. We are not, however, responsible for revising or removing your Personal Data obtained by any third party who has previously been provided your information by us in accordance with this policy or any third party to whom you have provided such information (whether by sharing your login and password, or otherwise).
How long we store your personal data
We will retain your information for as long as your account is active or it is reasonably needed for the purposes set out unless you request that we remove your Personal Data. We will only retain your Personal Data for so long as we reasonably need to use it for these purposes unless a longer retention period is required by law (for example for regulatory purposes). This may include keeping your Personal Data after you have deactivated your account for the period of time needed for us to pursue legitimate business interests, conduct audits, comply with (and demonstrate compliance with) legal obligations, resolve disputes and enforce our agreements.
Where We Store Your Personal Data
Because the Services are maintained in the United States of America, we do not transfer your Personal Data from the EU to any parties located outside the EU.
How We Protect Your Personal Data
We use industry-standard physical, managerial, and technical safeguards to preserve the integrity and security of your personal information. We limit access to your Personal Data to those employees and other staff who have a business need to have such access. All such people are subject to a contractual duty of confidentiality. We cannot, however, ensure or warrant the security of any information you transmit to us or guarantee that your information on the Services may not be accessed, disclosed, altered, or destroyed by a breach of any of our physical, managerial, or technical safeguards.
Our Policy on Children’s Privacy
Links to Other Websites
Changes to Our Privacy & Cookies Policy
Updated: Feb 13th 2020