Your privacy is important to us.
Please contact your employer or refer to your administrator’s organizational policies for more information.
When you visit our website or use our web or mobile application, we collect information about your internet or electronic activity (such as where you clicked and how long it took), device and browser data (such as device model number and browser type), and IP address.
When you subscribe to and receive our marketing emails, we collect your name and email address so that we can send you emails about our Services. We also collect certain information about your internet or electronic activity regarding our marketing emails, such as when you click on an email and if you click any links provided within the email.
If we consider you a prospective customer, we may collect your name, email address, phone number, and professional information (your employer) for sales outreach purposes.
When you become a customer, we collect your name, email address, phone number, postal address, professional information, and we also keep track of commercial information (what you have purchased from us).
In addition to the purposes listed above, we may use your information to:
- Process transactions with you, authenticate you when you log in, and operate and maintain the Services
- To communicate with you about the Services, including confirming your purchases, reminding you of subscription expirations, responding to your support requests.
- Provide Customer support to resolve technical issues you encounter, to respond to your requests for assistance, to analyze information, and to repair and improve the Services.
- Email newsletter subscribers with updates on product features
- Provide retargeted advertising
- Sales outreach to prospective customers
- Analyze user activity data to determine where we need to improve user and customer experience
Detect security incidents
- Verify accounts and activity, to monitor suspicious or fraudulent activity and to identify violations of Service policies
Where We Collect Personal Information From
Your employer may provide information about you; for example, an administrator may provide your name and email address so you can be invited as a user.
We may purchase the contact information of prospective customers from data brokers.
How We Share Personal Information
|What We Share||Who We Share It With (by category)|
We do not allow users under 16 years old. We will never knowingly collect (or sell) the personal information from persons under 16 years old. If we become aware that a child under 16 has provided us with personal information, we will take steps to delete such information.
You may exercise certain consumer rights under the California Consumer Privacy Act (CCPA) by filling in this form.
Right to Know
You have the right to request information regarding the categories and specific pieces of personal information we have collected about you, as well as the sources of that information, the business purpose for collecting it, and what types of third parties we share or sell it with.
If you make a request more than twice in a 12-month period, you may be required to pay a small fee for this service.
Right to Deletion
You have the right to request that we delete any of your personal information. We will delete any personal information that is not critical to the normal business operation from our records and direct all of our service providers to do the same.
We consider data to be critical to our business operation if they are used to:
- Provide goods or services to you
- Detect and resolve issues related to security or functionality
- Comply with legal obligations
Right to Non-Discrimination
If you exercise your consumer rights:
- We will not deny goods or services to you
- We will not charge different prices or rates for goods or services, including through the use of discounts or other benefits or imposing penalties
- We will not provide a different level or quality of goods or services to you
We do not sell any information that identifies you, such as your name or contact information. However, we do allow Ad Networks such as Facebook and Google to collect your IP address, electronic activity while on our website, and information about your device (such as the name and model number of your device) through cookies and similar tracking technologies on our website. They use this information to advertise to you after you leave our website. This is called “retargeted advertising.” Under the CCPA’s broad definition of what it means to “sell” personal information, this form of advertising may be considered a “sale” of your information.
If you do not want us to provide this information to our advertisers, you may opt out here:
You may designate someone as an authorized agent to make a request under CCPA on your behalf. You can do this by providing written permission to authorize an agent to act on your behalf; the agent will need to verify their identity with us. Agents authorized by power of attorney are exempt from having to provide written permission, but must show documentation that power of attorney has been granted.
We will deny a request from an agent that does not submit proof that they have been authorized by you to act on your behalf.
Before we can respond to any CCPA requests, we will need to verify that you are who you say you are. Verification is important for preventing fraudulent requests and identity theft.
The verification process depends on which type of request you make. For requests to access specific information or requests to delete information, we may require a higher level of verification. Typically, identity verification will require you to confirm certain information about yourself based on information we have already collected. For example, we may ask you to reply from the email address we have on file for you that is associated with your name. If we cannot verify your identity, we cannot fulfill requests to exercise any rights accorded to you by CCPA.
If you are an individual in the European Economic Area (EEA), you have the right to request access to your personal information in a portable format, along with the right to request erasure and rectification of incorrect data. Additionally, under certain conditions you have the right to object to our processing of your personal information or to request that we restrict processing of your information.
Legal bases for processing
We collect and process information about you only where we have legal bases for doing so under applicable EU laws. The legal bases are described in the section What Personal Information We Collect & Why
If you have consented to our use of information about you for a specific purpose, you have the right to change your mind at any time, but this will not affect any processing that has already taken place. Where we are using your information because we or a third party such as your employer have a legitimate interest to do so, you have the right to object to that use though, in some cases, this may mean no longer using the Services.
How We Store and Secure Personal Information
Information storage and security
We use data hosting service providers in the United States and Ireland to host the information we collect, and we use technical measures to secure your data. For more information on where we store your information, please see our Cloud hosting infrastructure page.
While we implement safeguards designed to protect your information, no security system is impenetrable and due to the inherent nature of the Internet, we cannot guarantee that data, during transmission through the Internet or while stored on our systems or otherwise in our care, is absolutely safe from intrusion by others.
How long we keep information
How long we keep information we collect about you depends on the type of information, as described in further detail below. After such time, we will either delete or anonymize your information or, if this is not possible, we will securely store your information and isolate it from any further use until deletion is possible.
We retain your account information for as long as your account is active and a reasonable period thereafter in case you decide to re-activate the Services. We also retain some of your information as necessary to comply with our legal obligations, to resolve disputes, to enforce our agreements, to support business operations, and to continue to develop and improve our Services. Where we retain information for Service improvement and development, we take steps to eliminate information that directly identifies you, and we only use the information to uncover collective insights about the use of our Services, not to specifically analyze personal characteristics about you.
Information you share on the Services
If your account is deactivated or disabled, some of your information and the content you have provided will remain in order to allow your team members or other users to make full use of the Services. For example, we continue to display messages you sent to the users that received them and continue to display content you provided.
If the Services are made available to you through an organization, we retain your information as long as required by the administrator of your account.
If you have elected to receive marketing emails from us, we retain information about your marketing preferences for a reasonable period of time from the date you last expressed interest in our Services, such as when you last opened an email from us or ceased using your BlockScore account. We retain information derived from cookies and other tracking technologies for a reasonable period of time from the date such information was created.
How We Transfer Information We Collect International
International transfers of information we collect
We collect information globally and primarily store that information in the United States. We transfer, process and store your information outside of your country of residence, to wherever we or our third-party service providers operate for the purpose of providing you the Services. Whenever we transfer your information, we take steps to protect it.
Data Processing Amendment (DPA)
For our Data Processing Amendment (DPA) required for GDPR compliance, please see this page.
List of Subprocessors
This is a list of subprocessors who have the potential to process customer data from individuals located in the European Economic Area. Current as of May 20, 2020.
|Third Party Service||Purpose||Entity Country||Website|
|Amazon Web Services||Hosting Service||USA||aws.amazon.com|
|Box||Data Storage Service||USA||www.box.com|
|Leadfeeder||Sales and Marketing||USA||www.leadfeeder.com|
|MixMax||Sales and Marketing||USA||mixmax.com|
|Clearbit||Sales and Marketing||USA||clearbit.com|
|Yesware||Sales and Marketing||USA||www.yesware.com|
|G Suite||Business Communication and Data Storage||USA||gsuite.google.com|
|Google Analytics||Data Analytics||USA||analytics.google.com|
|Help Scout||Business Communication||USA||www.helpscout.com|
|Salesforce||Sales and Marketing||USA||www.salesforce.com|
Any questions or privacy related complaints can be addressed by e-mail to firstname.lastname@example.org, or by mail to:
340 S Lemon Ave, Suite 4260
Walnut, CA 91789