As of April 14, 2021
II. Protecting Our Users
Password protection is a core feature of FYEO, Inc., with all features designed from the ground up to protect its user’s password, data, and thus their privacy. In line with that core value, FYEO, Inc. follows the guidelines pursuant to the data protection laws of the relevant jurisdictions. It is FYEO’s policy to adhere to the strictest elements of the different data protection laws for all of its users, pursuant to the given jurisdiction.
The European Union’s (EU) data protection law, the General Data Protection Regulation (GDPR), has core principles of data minimization, purpose limitation, short retention periods, anonymization, and security. The GDPR reflects the same values that FYEO, Inc. embodies. While the GDPR only applies to EU nationals, FYEO, Inc. adopted the majority of the GDPR standards for all users outside the EU and regardless of nationality. We believe that all of FYEO, Inc.’s users should have this level of protection available!
FYEO, Inc. takes any and all data breaches seriously and has put in place a breach notification policy compliant with the GDPR. We will use commercially reasonable efforts to make any legally required disclosures of any breach of the security, confidentiality, or integrity of stored “personal data” (as defined in applicable state statutes on security breach notification) to you via email or conspicuous posting on the Services without unreasonable delay, taking into account, among other things, (a) the legitimate needs of law enforcement or (b) any measures necessary to determine the scope of the breach and restore the reasonable integrity of the data system.
III. Protecting Our Users’ Data – Encryption and Transparency
All personal and user data stored by FYEO, Inc. is encrypted both at rest and transit within our system. Any data stored on a provider’s application is stored at rest in accordance with that provider’s policy.
By default, FYEO Inc. does not share any of your data with third parties with the exception of your email address for marketing purposes if you have agreed (opted in) to receive email marketing.
All user supplied credentials and passwords on the FYEO service is encrypted with a key that is generated on the client. FYEO, Inc does not have access to this key and can therefore not recover or decrypt any stored data in the system.
IV. Protecting Our Users’ Identity – Anonymous and/or Not Collected
FYEO, Inc.’s ethos and values are manifested from the core system architecture to protect users’ Personally Identifiable Information (PII). The first step to protecting PII is to not collect it at all. FYEO, Inc. understands the data it links to and by design removes specific data fields from scanning and AI analysis.
A user can access the Services in two ways. The first way is anonymously, in which no user information is collected or stored. The user is assigned only an anonymous public key. The other way is for the user to provide an email address. No other information regarding the user is collected by FYEO.
Even when FYEO, Inc. connects to a third-party service, user authentication occurs on the third-party service. FYEO, Inc. does not access or store user names or passwords which protects access to the user’s files and data.
FYEO’s third-party services are supplied by: Stripe, Klaviyo, Zendesk
V. Protecting Our Children
These Services are not directed to children under 16. The GDPR introduced the requirement regarding parental consent for processing personal data of individuals who are younger than 16. However, FYEO, Inc. recognizes that parents, guardians, or other adults often access our products for family use, including use by minors. We do not knowingly collect PII from children under 16. If a parent or guardian becomes aware that his or her child has provided us with Personal Information without their consent, he or she should contact us. If we become aware that a child under 16 has provided us with PII, we will delete such information from our files.
VI. How we collect information
We collect information that you voluntarily provide to become a registered User of our Services, and when you use certain aspects of our Services including your name or contact information including mailing address, phone number, or email address (e.g., entering an email address to send an email from your FYEO, Inc. account).
We also collect information when you browse or use our Services, technological tools including “Log Data” and “Cookies”, as explained below.
VII. What information we collect and how we use it
Personal Information. When you register directly with us through the Services to become a registered user of FYEO, Inc., we will ask you for certain information about you (currently only your email) that can be used to contact or identify you ("Personal Information").
Communications. We use your Personal Information to contact you with FYEO, Inc. newsletters, marketing or promotional materials and other information that may be of interest to you, if you opted in for this. If you decide at any time that you no longer wish to receive such communications from us, please follow the unsubscribe instructions provided in any of the communications or update your “preferences” information in your account settings. (See “Your choices regarding information,” below.)
Customer service. We use your Personal Information to respond to your questions and/or inquiries.
Log Data. As is true of most internet services, we gather some information automatically and store it in log files. When you visit the Services, whether as a registered User or a non-registered User just browsing, our servers automatically record information that your browser sends whenever you visit a website ("Log Data"). This Log Data may include information such as the browser type or the webpage you were visiting before you came to our Services, pages of our Services that you visit, the time spent on those pages, information you search for on our Services, access times and dates, and other statistics. We may use this information to monitor and analyze usage trends by users of the Services, for the technical administration of the Services, to assess and implement changes to the functionality of the Services, and to better tailor our Services to the needs of our users. For example, some of this information is collected so that when you visit the Services again, it will recognize you and the information could then be used to serve advertisements and other information appropriate to your interests. We also use this information to verify that visitors to the Services meet the criteria required to process their requests.
Location based services. FYEO will only use location based services to check in which region you are at registration so that we can securely store your data according to the applicable law and/or for data traffic routing to deliver the best possible user experience.
VIII. Sharing Your Information
Aggregate Information. We may share aggregated information that does not include Personal Information and Log Data to third parties for industry analysis, demographic profiling and other purposes. Any aggregated information shared in these contexts will not contain your Personal Information.
FYEO, Inc. Service Providers. We may employ third party companies (e.g. see list above) and individuals to facilitate the distribution of the Services and/or to provide the Services directly to its users or customers. We may share non-Personal Information with these service providers to assist them in these tasks but only to perform these tasks on our behalf and they are obligated not to disclose or use it for any other purpose.
Compliance with Laws and Law Enforcement. FYEO, Inc. cooperates with government and law enforcement officials and private parties to enforce and comply with the law. We can disclose any information about you to government or law enforcement officials or private parties as we, in our sole discretion, believe necessary or appropriate to respond to claims and legal process including, but not limited to, subpoenas, to protect our property and rights or the property and rights of any third party, to protect the safety of the public or any person, or to prevent or stop activity we may consider to be, or to pose a risk of being, illegal, unethical or legally actionable activity or otherwise in violation of the FYEO, Inc.’s Terms of Service.
Business Transfers. FYEO, Inc. may sell, divest, transfer, assign, share or otherwise engage in a transaction that involves, some or all of our assets, including any or all of the information described in this Policy, in the course of a corporate divestiture, merger, acquisition, joint venture, bankruptcy, dissolution, reorganization, or any other similar transaction or proceeding.
IX. Your choices regarding information
You have several choices regarding the use of information on our Services:
Email Communications. If you decide at any time that you no longer wish to receive email communications from us, please follow the unsubscribe instructions provided in any of the communications or update your "preferences" information in your account settings
Cookies. If you decide at any time that you no longer wish to accept cookies from the Services for any of the purposes described above, then you can instruct your browser, by changing its settings, to stop accepting cookies or to prompt you before accepting a cookie from the websites you visit. Consult your browser’s technical information. If you do not accept cookies, however, you may not be able to use all the functionality of the Services. If you have any questions about how to disable or modify cookies, please let us know at the contact information provided below.
Changing or Deleting Your Information. All users may review, update, correct or delete the Personal Information in their user account (including any imported contacts) by contacting us or by editing their profile on the Services. If you completely delete all of your Personal Information, then your user account may become deactivated. We will use commercially reasonable efforts to honor your request without undue delay.
One of the Services is a report identifying if a user has been part of a third party’s data breach and/or if their passwords are, or have been, publicly available. FYEO can delete any Personal Information and search results within its control. However, the breached data is outside of FYEO’s control and already in the public domain, thus it cannot be deleted or rectified by FYEO, Inc.
X. Links to other sites and FYEO, Inc. Services
Our Services contains links to other third-party websites and online Services. If you choose to visit another website or online Services by clicking on a link, you will be directed to that third party's website or online Services. The fact that we may link to a website or online Services is not an endorsement, authorization or representation of our affiliation with that third party, nor is it an endorsement of their privacy or information security policies or practices. We do not exercise control over third party websites and online services, and these third parties may place their own cookies or other files on your computer and collect data or solicit Personal Information and Non-Identifying Information from you. Other sites and online services follow different rules regarding the collection, use and/or disclosure of Personal Information and Non-Identifying Information. We encourage you to read the privacy policies or statements of the other websites or online services you visit before providing any information or using such websites or services.
XI. How We Store and Protect Information
Information Security. We care about the security of your information. We use commercially reasonable safeguards to preserve the integrity and security of information collected and maintained through the Services. However, we cannot ensure or warrant the security of any information you provide to us or guarantee that information on the Services may not be accessed, disclosed, altered, or destroyed by unauthorized persons.
XII. International Users of the Service
European users. All personal identifiable data of users signing up from a European IP address will be stored on data centers inside the EU. Since FYEO does not require any personal information except for your email address this distinction will be made by the location of your IP address at the time of registration.
If you have questions about the content of a document or transaction, or are unsure why you are receiving it, you should contact the party who sent it to you. If you have legal questions about a document or transaction, you should consult with an attorney. If you need assisting using any of the Services, need to make a request for rectification of deletion, or have any questions about this Policy, you may email firstname.lastname@example.org.