Privacy Policy

We take your privacy and protection of personal data very seriously.

Last updated: December 12, 2024

Welcome!

Welcome to Adteco! We hope you will enjoy and appreciate visiting or using our Website or using our Services. This Privacy Policy (the "Policy") tells you about who we are, what personal data we collect, and what we do with it while you visit the Website, use the Services, or otherwise interact with us. The Policy also explains your privacy and data rights under the law.

Please read this Policy carefully. By using our Website or Services, you agree to be bound by this Policy.

References to "you" or "your" are to you as an individual using our website or otherwise contacting us.

Some important terms

  • Data Protection Laws: Laws designed to protect your personal data and privacy where you live. These may include GDPR (Europe), CCPA (California), PIPEDA (Canada), AU Privacy Act (Australia), NZ Privacy Act (New Zealand), POPIA (South Africa), UK GDPR & DPA (United Kingdom), and others. Adteco is committed to adhering to applicable Data Protection laws.
  • Personal data: Information about an individual from which that person can be identified (e.g., name, email, online identifier). This includes "personal information" under various laws.

Other terms may be found in our Terms of Service.

About us

Adteco refers to Adteco, LLC, a US-based company, and any relevant subsidiaries or affiliates within the Adteco group responsible for processing your data. Adteco, LLC is the primary controller responsible for this Website.

Under GDPR and POPIA, Adteco acts as a "data controller" or "responsible party," meaning we collect personal data and determine how it's processed. When we process data because you use our services through one of our customers (e.g., as their employee or client), we act as a "data processor" on their behalf. In such cases, refer to our customer's privacy policy.

Contacting us

For privacy-related questions or to exercise your rights, contact:

Adteco Privacy Contact
Email: privacy@adteco.com

Mailing Address:
[Adteco Mailing Address Here]

For questions about the Website or Services, email support@adteco.com.

Your legal rights

Depending on your location and applicable Data Protection Laws (like GDPR, CCPA, etc.), you may have rights including:

  • Access: Request a copy of your personal data.
  • Correction: Request correction of inaccurate data.
  • Erasure: Request deletion of your data under certain conditions.
  • Object to processing: Object to processing based on legitimate interests or for direct marketing.
  • Restrict processing: Request suspension of processing under certain scenarios.
  • Data portability: Request transfer of your data in a machine-readable format.
  • Withdraw consent: Withdraw consent where processing relies on it (this doesn't affect past processing).
  • Be notified: Be informed about data collection and breaches.
  • Opt-out: Opt out of marketing or the sale/sharing of your data (Adteco does not sell your personal data).
  • Non-discrimination: Not be discriminated against for exercising privacy rights.
  • Complain: Lodge a complaint with a supervisory authority.

To exercise these rights, please contact us. We generally do not charge a fee, but may charge for unfounded, repetitive, or excessive requests. We aim to respond within one month, potentially longer for complex requests. We may need to verify your identity.

The personal data we collect about you

We may collect, use, store, and transfer:

  • Identity Data: Name, username, title, company, location, etc.
  • Contact Data: Billing address, email, phone number.
  • Financial Data: Payment card details (processed by partners like Stripe), bank account information (if applicable).
  • Transaction Data: Details about payments and services purchased.
  • Technical Data: IP address, login data, browser type/version, device information, etc.
  • Profile Data: Username/password (hashed), preferences, feedback.
  • Usage Data: How you use our website and services.
  • Marketing and Communications Data: Marketing preferences, communication history.

How your personal data is collected

  • Direct interactions: Filling forms, creating accounts, contacting us.
  • Automated technologies: Cookies, server logs, analytics tools (see Cookie Policy).
  • Third parties: Analytics providers (Google Analytics), payment processors (Stripe), data brokers (if applicable), public sources, third-party applications you connect.

When you visit our site, online partners may associate your activity with other information (like your email) for targeted communications. Opt-out options are available (e.g., via https://app.retention.com/optout).

How we use your personal data

We use your data only when legally permitted, primarily:

  • To perform a contract: Provide services, manage accounts, process payments.
  • For legitimate interests: Improve services, manage our business, prevent fraud, marketing analysis, customer support (ensuring your rights are not overridden).
  • To comply with legal obligations.
  • With your consent: Primarily for third-party direct marketing (you can withdraw consent).

Specific uses include:

  • Registering new customers and managing relationships.
  • Providing and improving the Website and Services, including support.
  • Processing transactions and managing payments (via partners).
  • Administering and protecting our business and website (security, troubleshooting).
  • Delivering relevant content and advertising (analyzing effectiveness).
  • Using data analytics to improve user experience and marketing.
  • Making service recommendations based on your usage.

Failure to provide necessary data may prevent us from fulfilling contracts (e.g., providing services).

Financial Data for billing is handled by secure Payment Processors (e.g., Stripe) and not stored on Adteco servers.

Change of purpose

We only use your data for the purposes collected, unless we reasonably consider a need for another compatible reason. We will notify you and explain the legal basis if using data for an unrelated purpose. We may process data without knowledge or consent where required/permitted by law.

Aggregated Data

We may use aggregated, anonymized data (which doesn't identify you) for statistical purposes indefinitely (e.g., calculating usage percentages).

Special Categories of Personal Data

We do not intentionally collect sensitive data (race, religion, health, etc.) or criminal conviction information. Please do not provide this. If you voluntarily provide it, you explicitly consent to its processing as permitted by law.

Who we transfer your personal data to

We may share data with:

  • Internal Adteco entities: For operational purposes.
  • External third parties:
    • Professional advisers (lawyers, auditors, insurers).
    • Law enforcement or regulators (if legally required).
    • Service providers (subprocessors) like cloud hosting (AWS, Vercel), payment processing (Stripe), CRM (HubSpot - if used), analytics (Google Analytics, PostHog), communication (Slack - if used for support), authentication (Clerk), etc. See our Subprocessors page for a list.
    • Potential buyers/partners in a business sale/merger.

We require third parties to respect data security and process it only for specified purposes under our instruction. We do not sell your personal data.

Subprocessors include:

  • Email/Communication: (e.g., HubSpot, Postmark, Slack - specify if used)
  • Infrastructure/Hosting: AWS, Vercel, Supabase, Cloudflare, Upstash, GitHub
  • Analytics: Google Analytics, PostHog
  • Payment: Stripe
  • Authentication: Clerk
  • Support: (e.g., Intercom, Zendesk - specify if used)
  • Advertising Networks: Google, Facebook, LinkedIn (specify if used)
  • Referral Programs: (e.g., PartnerStack - specify if used)
  • Business Systems: NetSuite, Procore, BigCommerce, Loren Data

Transfer of personal data outside of your region

Sharing data within Adteco or with third parties may involve transferring data internationally (e.g., outside the EEA, UK, South Africa). We ensure similar protection by using safeguards like:

  • Transferring to countries deemed adequate by relevant authorities.
  • Using Standard Contractual Clauses (SCCs) or other approved mechanisms where adequacy decisions don't exist.
  • Relying on binding corporate rules where applicable.

Our primary operations and data hosting are in the US. Transfers to partners in other regions (like Canada, Australia) are done ensuring compliance with Data Protection Laws. You can request not to have data transferred internationally, but this may limit service usability.

Marketing and promotional material from us

We may send marketing communications if you've requested information, purchased services, or opted in. We use your data to personalize relevant offers.

You can opt-out of marketing messages at any time by contacting us or using unsubscribe links. Opting out of marketing does not opt you out of essential service-related communications.

Text messaging opt-in data and consent are not shared with third parties.

Third-party marketing and advertisements

We do not share your personal data with third parties for their marketing purposes without your explicit opt-in consent.

We may use advertising networks (e.g., Google Ads, LinkedIn Ads - specify if used) to show you relevant ads based on your interaction with our site. Opt-out options are available via ad settings on those platforms or tools like WebChoices. See our Cookie Policy.

Opting out

You can ask us or third parties to stop marketing communications at any time. This doesn't affect processing before withdrawal or essential service communications.

Tracking technology ("cookies" and other similar technologies)

We use cookies and similar tech. You can manage browser settings to refuse cookies, but some site parts may not function. See our Cookie Policy for details.

Limited gathering of personal data for statistical, analytical and security purposes

We use analytics tools (Google Analytics, PostHog) to understand usage patterns and improve services. Technical Data collected may also be used for security purposes (fraud detection, violation investigation).

Email communications and compliance with anti-spam laws

We use email service providers (e.g., Postmark, HubSpot - specify if used) to manage lists and send communications. Data is transferred securely for these purposes. You can unsubscribe from marketing emails via links provided. Transactional emails are necessary for service use.

Our email practices comply with anti-spam laws (CAN-SPAM, CASL, etc.). Contact us if you believe you received spam.

Push notifications and email notifications

We may send email notifications related to service functions or support (e.g., via integrated tools). Manage notification preferences where available (e.g., device settings for push, account settings for email).

How we protect your personal data

We implement strict technical and organizational measures to protect your data from loss, unauthorized access, or misuse. Access is limited to those with a business need-to-know, bound by confidentiality.

We have procedures for suspected data breaches and will notify you and authorities as legally required.

We use industry best practices (encryption like SSL/TLS) and secure third-party vendors (AWS, Vercel, Stripe for PCI-DSS compliant payments). See our Security page for more details.

Supervisory authorities and complaints

You have the right to complain to a data protection supervisory authority in your jurisdiction (e.g., ICO in the UK, FTC in the US, or relevant EU DPA). We appreciate the chance to address concerns first, so please contact us initially.

Data retention

We keep personal data only as long as necessary for the purposes collected, including legal, accounting, or reporting requirements. Retention periods consider data amount, nature, sensitivity, potential harm risk, processing purposes, and legal requirements.

We may retain data longer if there's a complaint or potential litigation. You can request deletion (see 'Your legal rights'). We may anonymize data for research/statistical use indefinitely.

Automated decision-making

We generally do not use automated decision-making that has significant legal effects. If we implement such processes (e.g., for personalized offers), we will update this policy. You typically have rights to obtain explanations, challenge decisions, and request human intervention in such cases.

Changes to this Policy and your duty to inform us of changes

This Policy was last updated on the date at the top. We review and update it at least annually. Find the latest version here. Significant changes will be notified via the Website/Services and email (if you have an account).

It's important your data is accurate. Please inform us of changes during our relationship.

Children's privacy statement

Our Website and Services are not intended for children under 18. We do not knowingly collect data from children under 18. If we learn we have, we will delete it.

Our website may link to third-party sites. We don't control them and aren't responsible for their privacy practices. Read their policies when leaving our site.