Privacy
Promise

Last Update: 11/22/24
To reflect the change from a policy to a “Promise.”
To reflect changes in “Sharing of Information.”
To add a “Compliance Acronyms” Primer.

Introduction

It would be far better for you, us, and—we believe—the world if you didn’t have to read this, and we didn’t have to draft it with a bunch of legalese. But, here we are. And since this is the world we live in (for now), we aim to make this Privacy Promise as SiMPLE™, digestible, and downright engaging as possible.

Let’s get the boring stuff out of the way first: yes, we comply with privacy laws like PIPEDA, GDPR, CCPA/CPRA, and more (and that wasn’t just me bang’n on the keyboard — go ahead — click one). These acronyms might sound like gibberish, but they’re real, and they exist to protect you (and us) in the digital age.

Now for the fun part:
Your Data? IT’S YOURS. Full Stop.

If you give it to us for a purpose, we’ll only use it for that purpose.
If you want it back, just ask—we’ll return it, no strings attached.
If you’re curious about how we store, transfer, or protect it, we’re happy to show you the details.

Think of your data like a house key you’ve lent us—we’ll use it only for what you intended, and we’ll keep it safer than our own undies & sock drawer. Because that’s what we’d want you to do with ours.

At Sociabl™ Us!, we’re committed to treating your data with the same respect, care, and diligence we’d expect for ourselves. Transparency, trust, and humanity are non-negotiable values for us.

Welcome to Sociabl™ Us!—where privacy isn’t just a policy. It’s a promise.

Information Collection

We collect information through various means, including but not limited to, when you visit our website, register for our services, or interact with us. The types of information we collect may include:

Personal Identifiers: Name, address, phone number, and email address.
Demographic Information: Age, gender, occupation, education level, income bracket.
Geolocation Data: Physical location or movements.
Device Information: Type of device used, operating system, browser type, IP address.
Usage Data: Information on how users interact with your website or services, such as pages visited, time spent on pages, and click-through rates.
Communication Data: Records of customer service interactions, feedback, and survey responses.
Social Media Information: Data obtained from social media profiles, if users connect or interact with our services through social media platforms.
Financial Information: Payment details, purchase history, billing address.
Preferences and Interests: Information on user preferences and interests, potentially gathered through website interactions or surveys.
Behavioral Data: Insights derived from analysis of user interactions, preferences, and tendencies.

Use of Information

The information we collect is used to:

Operations: Provide, operate, and maintain our services.
Service Improvement: Improve, personalize, and expand our services.
Customer Support: Communicate with you for customer service, updates, and other information relating to the website.
Marketing and Promotions: Conduct marketing and advertising initiatives tailored to your interests.
Personalization: Customize the user experience based on individual preferences and history.
Analytics and Research: Understand and analyze how you use our services, understand market trends, and improve product offerings.
Security Purposes: Enhance the security and integrity of your services and protect against fraud.
Legal Compliance and Enforcement: To comply with legal requirements and enforce terms and conditions.
Feedback and Surveys: To solicit feedback and conduct surveys to improve user satisfaction.
New Product Development: Develop new products, services, features, and functionality.

Sharing of Information

Flat out — we’d rather not! This is when we do:

Third-party service providers to facilitate our services.
Legal authorities when required and demanded by law under the threat of violence.
Affiliated entities in the course of business operations.
IT IS NEVER FOR SALE.

Our Commitment to Data Minimization and Vendor Accountability

At Sociabl™ Us!, we are dedicated to safeguarding your privacy. This commitment extends to our interactions with third-party service providers. We strictly provide only the essential data needed for each service provider to perform the specific business functions we have engaged them for. Our relationship with these providers is purely contractual, not a partnership.

We rigorously select vendors who demonstrate a strong adherence to data privacy and transparency. This criterion is a key factor in our decision-making process. Holding our service providers accountable for their data practices is not just a policy; it’s an integral part of our ethos. By doing so, we aim to offer you services that are not only efficient but also respectful of your privacy rights.

Third Party Services & Data Processors

Third-Party Services and Data Processors

To provide you with high-quality services and enhance your user experience, Sociabl™Us! utilizes various third-party software as a service (SAAS) products, payment processors, web hosts, data storage solutions, and business management tools.

Google Analytics

Google Analytics: This service is crucial for understanding website traffic and user behavior. It provides insights that guide our website optimization and content strategy. Google Analytics’ robust data protection and privacy standards align with our commitment to safeguarding user information. Their Privacy Policy can be seen here.

Google Tags

Google Tags (Google Tag Manager): We utilize Google Tags for managing and deploying marketing tags on our website. It streamlines the process of updating and integrating various tracking technologies, ensuring efficient and accurate data collection for our marketing and analytical endeavors. Their Privacy Policy can be seen here.

Meta Pixel

Meta Pixel: Meta Pixel is a tool for tracking user interactions on our website, primarily for Facebook and Instagram advertising. It helps in refining our advertising strategies based on user behavior, thereby enhancing the relevance and effectiveness of our marketing efforts. Their Privacy Policy can be seen here.

Brevo

Brevo (fka Sendinblue): We use Brevo for email marketing and communication. It enables the management and execution of email campaigns, tracking user engagement and response rates. Brevo’s adherence to email marketing regulations and its robust privacy protections ensure the responsible handling of contact information and communication preferences. Their Privacy Policy can be seen here.

Sociamonials

Sociamonials: Sociamonials is used for our social media management and marketing analytics. It assists in creating, scheduling, and tracking the performance of social media content across multiple platforms. Sociamonials collects data such as user interactions and engagement metrics, which is crucial for analyzing the effectiveness of our social media strategies. Their commitment to data privacy and adherence to regulations like GDPR ensures the secure handling of social media data. This tool is pivotal in enhancing our online presence and engaging effectively with our audience. Their Privacy Policy can be seen here.

Basecamp

Basecamp: is employed for project management and team collaboration. It provides tools for task assignments, deadlines, file sharing, and communication. Basecamp’s security measures safeguard project information and enhance team productivity, making it a vital tool for managing our internal processes and client projects. Their Privacy Policy can be seen here.

SuiteDash

SuiteDash: an integrated software platform we use for business management, including client relationship management (CRM), project management, and invoicing. It securely handles client data, project details, and financial transactions, ensuring efficient internal workflows and client interactions. SuiteDash’s focus on data security and customization aligns with our commitment to client privacy and tailored service delivery. Their Privacy Policy can be seen here.

NameHero

NameHero: provides web hosting and domain registration services for our website. As our hosting provider, NameHero stores and manages the data infrastructure that supports our online services. They are chosen for their reliable hosting solutions, strong uptime records, and commitment to data security. NameHero implements measures such as SSL certificates, DDoS protection, and regular data backups to ensure the integrity and availability of our website and the data it holds. Their role is crucial in maintaining the seamless operation and security of our digital presence. Their Privacy Policy can be seen here.

Liquid Web

Liquid Web: provides web hosting services for our online platform. They manage the servers where our website and customer data are stored. Liquid Web is known for its high-performance hosting solutions and strong security protocols, including data encryption and regular backups, ensuring the reliability and security of our online presence. Their Privacy Policy can be seen here.

Stripe

Stripe: As our primary payment processor, Stripe handles all aspects of payment processing for transactions on our platform. Stripe collects and processes payment information, such as credit card details, to facilitate secure and efficient transactions. We’ve chosen Stripe for its robust security measures, including encryption and fraud detection systems, ensuring the protection of your financial data. Their Privacy Policy can be seen here.

PayPal

PayPal: We offer PayPal as an alternative payment processing option. PayPal securely processes payments, handling sensitive financial information like bank account and credit card details. Their commitment to security, user privacy, and ease of use makes them a trusted choice for handling transactions. Their Privacy Policy can be seen here.

Google Drive

Google Drive: Google Drive is utilized as a cloud storage solution for storing and sharing documents, images, and other files essential to our operations. It offers a secure platform for team collaboration, file backup, and data sharing. Google Drive’s robust security measures, including encryption and advanced sharing settings, ensure the safety and privacy of our stored data. This service is integral for efficient document management and accessibility within our team. Their Privacy Policy can be seen here.

Microsoft OneDrive

Microsoft OneDrive: We use Microsoft OneDrive for cloud storage and file management, particularly for Office-related documents and collaboration. OneDrive provides secure access to files from multiple devices, facilitating seamless collaboration and data backup. Its strong security features, like encryption both at rest and in transit, along with compliance with various data protection regulations, make it a reliable choice for safeguarding our digital assets and enhancing productivity. Their Privacy Policy can be seen here.

Adobe Cloud Storage

Adobe Cloud Storage: Adobe Cloud Storage is used for managing and storing creative assets, including graphics, videos, and design files. It provides a centralized platform for our creative team to access, edit, and share large multimedia files efficiently. Adobe’s commitment to security, with features like advanced encryption and secure access controls, ensures the protection of our intellectual property and sensitive creative content. This service is essential for streamlining our creative processes and enabling collaboration across design projects. Their Privacy Policy can be seen here.

Your Rights

You have the right to:

Access the personal information we hold about you.
Request correction or deletion of your information.
Opt out of certain uses of your information.

Data Security

We implement robust security measures to protect your data, including:

Strong Password Policies: Enforcing complex password requirements and regular changes.
Two-Factor Authentication (2FA): Implementing 2FA for accessing sensitive systems.
Passkey Authentication: Superior Passkey Authentication is now the mandatory standard for all of our Google, Adobe, Meta, and Stripe logins.
Regular Software Updates: Ensure that all software and systems are up-to-date with the latest security patches.
Basic Employee Training: Educate employees about basic cybersecurity practices, like identifying phishing attempts.

Changes To This Promise

Changes to This Promise

We will provide notice of significant updates, but please check our Privacy Notice periodically for changes. We’ll always post the date our Privacy Notice was last updated at the top of the notice. We reserve the right to modify this policy. Regular review is recommended.

Compliance Acronyms — A Primer

What Do These Privacy Laws Even Mean? (A Quick Primer)

Privacy laws might seem like a jumble of acronyms, but they’re here to protect your personal data and ensure businesses (like us!) handle it responsibly. Here’s a quick guide to some of the big ones we comply with:

PIPEDA (Personal Information Protection and Electronic Documents Act)

Canada’s privacy law ensures your personal information is collected, used, and disclosed only with your consent. It’s all about keeping your data safe and sound in the Great White North.

GDPR (General Data Protection Regulation)

Europe’s heavyweight privacy law gives you control over your personal data. It mandates that businesses handle your information transparently and securely, no matter where in the world you are.
CCPA/CPRA (California Consumer Privacy Act/California Privacy Rights Act)

Straight outta California, these laws give you the right to know what data we collect, request that we delete it, and even opt-out of having it sold (don’t worry — we don’t believe in selling data!)
LGPD (Lei Geral de Proteção de Dados)

Brazil’s GDPR-inspired law gives you similar rights to control your data and ensures businesses prioritize privacy and security.
POPIA (Protection of Personal Information Act)

South Africa’s privacy law focuses on protecting your information from misuse while giving you the power to manage how it’s handled.

Other laws like CPA, VCDPA, CTDPA, and UCPA, ensure that privacy protections extend to individual states like Colorado, Virginia, Connecticut, and Utah. These laws reflect a growing trend in the U.S. to prioritize consumer data rights at the state level.

Combined with international frameworks like GDPR and PIPEDA, these laws create a global patchwork of privacy standards that guide how we handle your data, no matter where you’re located. At Sociabl™ Us!, we stay on top of these regulations so you don’t have to—your privacy is protected across borders and boundaries.

What Does This Mean for You?

It’s simple:

Your Rights Are Protected: These laws guarantee that your personal data is handled with care and transparency.
You’re in Control: Want to see what data we’ve got? Want it back? Want it deleted? You’ve got the power.
We’re Accountable: We comply with these laws not because we have to, but because it’s the right thing to do.

Privacy Promise

Privacy Promise

Last Update: 11/22/24To reflect the change from a policy to a “Promise.”To reflect changes in “Sharing of Information.”To add a “Compliance Acronyms” Primer.

Now for the fun part:Your Data? IT’S YOURS. Full Stop.

If you give it to us for a purpose, we’ll only use it for that purpose.

If you want it back, just ask—we’ll return it, no strings attached.

If you’re curious about how we store, transfer, or protect it, we’re happy to show you the details.

Think of your data like a house key you’ve lent us—we’ll use it only for what you intended, and we’ll keep it safer than our own undies & sock drawer. Because that’s what we’d want you to do with ours.

At Sociabl™ Us!, we’re committed to treating your data with the same respect, care, and diligence we’d expect for ourselves. Transparency, trust, and humanity are non-negotiable values for us.

Welcome to Sociabl™ Us!—where privacy isn’t just a policy. It’s a promise.

We collect information through various means, including but not limited to, when you visit our website, register for our services, or interact with us. The types of information we collect may include:

Personal Identifiers: Name, address, phone number, and email address.

Demographic Information: Age, gender, occupation, education level, income bracket.

Geolocation Data: Physical location or movements.

Device Information: Type of device used, operating system, browser type, IP address.

Usage Data: Information on how users interact with your website or services, such as pages visited, time spent on pages, and click-through rates.

Communication Data: Records of customer service interactions, feedback, and survey responses.

Social Media Information: Data obtained from social media profiles, if users connect or interact with our services through social media platforms.

Financial Information: Payment details, purchase history, billing address.

Preferences and Interests: Information on user preferences and interests, potentially gathered through website interactions or surveys.

Behavioral Data: Insights derived from analysis of user interactions, preferences, and tendencies.

Use of Information

The information we collect is used to:

Operations: Provide, operate, and maintain our services.

Service Improvement: Improve, personalize, and expand our services.

Customer Support: Communicate with you for customer service, updates, and other information relating to the website.

Marketing and Promotions: Conduct marketing and advertising initiatives tailored to your interests.

Personalization: Customize the user experience based on individual preferences and history.

Analytics and Research: Understand and analyze how you use our services, understand market trends, and improve product offerings.

Security Purposes: Enhance the security and integrity of your services and protect against fraud.

Legal Compliance and Enforcement: To comply with legal requirements and enforce terms and conditions.

Feedback and Surveys: To solicit feedback and conduct surveys to improve user satisfaction.

New Product Development: Develop new products, services, features, and functionality.

Sharing of Information

Flat out — we’d rather not! This is when we do:

Third-party service providers to facilitate our services.

Legal authorities when required and demanded by law under the threat of violence.

Affiliated entities in the course of business operations.

IT IS NEVER FOR SALE.

Our Commitment to Data Minimization and Vendor Accountability

Third-Party Services and Data Processors

To provide you with high-quality services and enhance your user experience, Sociabl™Us! utilizes various third-party software as a service (SAAS) products, payment processors, web hosts, data storage solutions, and business management tools.

Google Analytics

Google Tags

Meta Pixel

Brevo

Sociamonials

Basecamp

SuiteDash

NameHero

Liquid Web

Stripe

PayPal

Google Drive

Microsoft OneDrive

Adobe Cloud Storage

You have the right to:

Access the personal information we hold about you.

Request correction or deletion of your information.

Opt out of certain uses of your information.

Data Security

We implement robust security measures to protect your data, including:

Strong Password Policies: Enforcing complex password requirements and regular changes.

Two-Factor Authentication (2FA): Implementing 2FA for accessing sensitive systems.

Passkey Authentication: Superior Passkey Authentication is now the mandatory standard for all of our Google, Adobe, Meta, and Stripe logins.

Regular Software Updates: Ensure that all software and systems are up-to-date with the latest security patches.

Basic Employee Training: Educate employees about basic cybersecurity practices, like identifying phishing attempts.

Changes to This Promise

We will provide notice of significant updates, but please check our Privacy Notice periodically for changes. We’ll always post the date our Privacy Notice was last updated at the top of the notice. We reserve the right to modify this policy. Regular review is recommended.

What Do These Privacy Laws Even Mean? (A Quick Primer)

Privacy laws might seem like a jumble of acronyms, but they’re here to protect your personal data and ensure businesses (like us!) handle it responsibly. Here’s a quick guide to some of the big ones we comply with:

PIPEDA (Personal Information Protection and Electronic Documents Act)

GDPR (General Data Protection Regulation)

CCPA/CPRA (California Consumer Privacy Act/California Privacy Rights Act)

LGPD (Lei Geral de Proteção de Dados)

POPIA (Protection of Personal Information Act)