Greenstitute and/or its affiliates (“Greenstitute,” “Social Karma” “EDEN” the “Company,” “we,” “us,” and “our,”) respect your privacy and is committed to protecting it through its compliance with its privacy policies. This policy describes:
- the types of information that Greenstitute may collect from you when you access or use its websites, applications and other online services (collectively, referred as “Services”); and
- its practices for collecting, using, maintaining, protecting and disclosing that information.
This policy applies only to the information Greenstitute collects through its Services, in email, text and other electronic communications sent through or in connection with its Services.
This policy DOES NOT apply to information that you provide to, or that is collected by, any third-party, Greenstitute’s Services and social networks that you use in connection with its Services. Social Karma encourages you to consult directly with such third-parties about their privacy practices.
If you reside in a country within the European Union/European Economic Area (EAA), Social Karma Sp. z o.o. , located at ul. Elektoralna 13/103, 00-137, Warsaw, Poland. will be the controller of your personal data provided to, or collected by or for, or processed in connection with our Services;
This policy may change from time to time, your continued use of Social Karma’s Services after it makes any change is deemed to be acceptance of those changes, so please check the policy periodically for updates.
Cookies can either be “session Cookies” or “persistent Cookies”. Session Cookies are temporary Cookies that are stored on your device while you are visiting our Site or using our Services, whereas “persistent Cookies” are stored on your device for a period of time after you leave our Site or Services. The length of time a persistent Cookie stays on your device varies from Cookie to Cookie. We use persistent Cookies to store your preferences so that they are available for the next visit, and to keep a more accurate account of how often you visit our Services, how often you return, how your use of the Services may vary over time. We also use persistent Cookies to measure the effectiveness of advertising efforts. Through these Cookies, we may collect information about your online activity after you leave our Services. Your browser may offer you a “Do Not Track” or “DNT” option, which allows you to signal to operators of websites, and web applications, and services that you do not wish such operators to track certain of your online activities over time and across different websites. Because we collect browsing and persistent identifier data, the Services do not support Do Not Track requests at this time, which means that we may collect information about your online activity both while you are using the Services and after you leave our properties.
Some Cookies are placed by a third party on your device and may provide information to us and third parties about your browsing habits (such as your visits to our Site or Services, the pages you have visited and the links and advertisements you have clicked). These Cookies can be used to determine whether certain third party services are being used, to identify your interests, to retarget advertisements to you and to serve advertisements to you that we or others believe are relevant to you. We do not control third party Cookies.
We use the following types of Cookies:
- Essential Cookies. Essential Cookies are required for providing you with features or services that you have requested. For example, certain Cookies enable you to log into secure areas of our Site or Services. Disabling these Cookies may make certain features and services unavailable.
- Functionality Cookies. Functional Cookies are used to record your choices and settings regarding our Services, maintain your preferences over time and recognize you when you return to our Services. These Cookies help us to personalize our content for you, greet you by name, and remember your preferences (for example, your choice of language or region).
- Retargeting/Advertising Cookies. Retargeting/Advertising Cookies collect data about your online activity and identify your interests so that we can provide advertising that we believe is relevant to you. For more information about this, please see the section below titled “Third Party Advertising”.
You can decide whether or not to accept Cookies. One way you can do this is through your internet browser’s settings. Most browsers have an option for turning off the Cookie feature, which will prevent your browser from accepting new Cookies, as well as (depending on the sophistication of your browser software) allow you to decide on acceptance of each new Cookie in a variety of ways. You can also delete all Cookies that are already on your computer. If you do this, however, you may have to manually adjust some preferences every time you visit a site and some Services and functionalities may not work.
To explore what Cookie setting are available to you, look in the “preferences” or “options” section of your browser’s menu. To find our more information about Cookies, including information about how to manage and delete Cookies, please visit https://ico.org.uk/for-the-public/online/cookies/ or http://www.allaboutcookies.org/.
List of data sub-processors
|Entity Name||Data Processing Purpose||Location||Website|
|Google, Inc.||Analytics, Online Advertising, Cloud Drive Integration, Authentication Provider||USA||https://www.google.com/|
|Slack by Slack Technologies, Inc.||Authentication Provider, Service Integration||USA||https://slack.com/|
|Facebook, Inc.||Online Advertising, Social Media||USA||https://facebook.com|
|MailChimp, Inc.||E-mail responder||USA||https://mailchimp.com|
Controlling your personal information – Your rights
You have a number of statutory rights with respect to us: access, corrections or additions, data deletion, limitation of processing, transfer of digital data and the right of objection. We explain these rights below. We also explain how you can exercise these rights with respect to Social Karma.
Right of access
Upon your request, we will inform you in writing whether we are processing your personal data. When making your request, you must identify yourself by means of a copy of your driving license or identity document. In our response, we will explain which of your personal data we have processed or are still processing. We will also explain the purposes for which the data have been or are still being processed, the parties with which the data are being shared, the period for which these data are expected to be stored, and which other rights you can exercise.
Corrections or additions
If you have received details about the processing of your personal data, you can request us to correct inaccuracies or to make additions to incomplete information. We will motivate our response. If we make corrections, you will receive a supplementary statement from us. That statement will also be sent to any recipients of your incorrect or incomplete data.
Delete personal data
You can request us to delete your personal data from our systems in one or more of the following cases:
– the personal data are no longer necessary for the purposes for which we have processed them;
– you withdraw your permission for processing or further processing and no other basis for processing exists;
– you lodge a motivated objection, and there are no urgent reasons for not respecting your objection;
– the personal data have been wrongfully processed by us;
– we have to delete your personal data on the basis of a statutory obligation of which we had no knowledge before you informed us thereof.
Limitation of processing
If you have noticed an inaccuracy or incompleteness in your personal data, you can request us to limit the processing for as long as we are dealing with your request. You may also request us to limit the processing of your data if you believe that we are wrongfully processing your data or if we no longer need them, or if you have lodged and objection against the processing or the further processing of the data. After the receipt of your limitation request, we will continue to process the data only with your permission or if there are compelling reasons for doing so (such as legal proceedings).
Transfer of digital data
If you have provided us with personal data and we have processed your data with your permission or in the context of implementing an agreement with you, you will be entitled to request a copy of these data from us. In such cases, you can also request that your data be transferred directly to another service provider.
You may lodge an objection at all times against the processing of personal data relating to you. That applies particularly to profiles and accounts that we have created on the basis of your personal data. We will cease processing your data following the receipt of your objection, unless we can put forward justifiable reasons that outweigh your interests, rights and liberties.
If we process your personal data for direct marketing purposes, you may object at any time and we will cease processing immediately.
EU privacy/data protection rights
EU General Data Protection Regulation (GDPR) has provided the below rights to the EU residents:
- Right to information – including contact details to the DPO, the purposes for processing Personal Information and the rights of the individual.
- Right to access the Personal Information that are processed
- Right to erasure (”Right to be forgotten”)
- Right to rectification
- Right to restriction of processing
- Right to data portability of the Personal Information supplied to Social Karma by the EU resident
- Right to object (opt-out) to processing (unless Social Karma otherwise has compelling legitimate grounds)
EU residents can exercise these rights by raising a request directly at email@example.com or contact us at the information provided in CONTACT US section at the bottom of the page.
If you wish to exercise one or more of the rights summarized above, you can contact us at firstname.lastname@example.org. Social Karma will decide on your request within four weeks, unless we inform you within that period that we need a bit more time.
If your personal data are processed on the basis of your permission, you will be entitled to withdraw that permission. Any withdrawal of your permission will not prejudice previous processing on the basis of that permission.
Security: How we protect your information
We have implemented appropriate physical, electronic, and managerial procedures to safeguard and help prevent unauthorized access to your information and to maintain data security. These safeguards take into account the sensitivity of the information that we collect, process and store and the current state of technology. We follow generally accepted industry standards to protect the personal information submitted to us, both during transmission and once we receive it. The third party service providers with respect to payment gateway and payment processing are all validated as compliant with the payment card industry standard (generally referred to as PCI compliant service providers).
We assume no liability or responsibility for disclosure of your information due to errors in transmission, unauthorized third-party access, or other causes beyond our control. You play an important role in keeping your personal information secure. You should not share your user name, password, or other security information for your Social Karma account with anyone. If we receive instructions using your user name and password, we will consider that you have authorized the instructions.