Noibu is Committed to Protecting Your Personal Information
The privacy of our users is of great importance to us. By using the Service in any manner or providing Personal Information to Noibu, you acknowledge that you accept the practices and policies outlined in this Policy and you hereby consent to the collection, use and disclosure of your Personal Information in accordance with this Policy.
1 WHAT DOES THIS POLICY COVER?
This Policy covers our collection, use and disclosure of information about identifiable individuals (“Personal Information”), particularly those individuals who complete transactions with our e-commerce clients (our “Clients”).
2 COLLECTION AND USE OF PERSONAL INFORMATION AND OTHER DATA
2.1 Client Account Information
In order to use certain aspects of the Service, representatives of our Clients users may be required to have a valid Noibu account to log in to the Service (“Account”). When our Clients register for the Service, we generally collect only business contact information, including the company name and address. Noibu may also collect credit card billing information in order to process payments for the Noibu Service and Professional Services.
2.2 End User Data
When end users of our Client, including online shoppers (“End Users”), engage in a transaction with the e-commerce Client of Noibu, Noibu will record a video of the e-commerce transaction process, which may collect Personal Information of the End User, on behalf of our Client, such as: name, address, email, username, and details related to the purchase transaction. Noibu also collects the browser type, device type, and IP address. This Personal Information of End Users is collected to allow our Clients to identify and resolve potential errors on their e-commerce website and check-out process.
3 STORAGE LOCATION AND TRANSFER OF PERSONAL INFORMATION
Noibu stores its data, including Personal Information, on servers located in the United States and Canada, including through the use of our Sub-Processors. By submitting information, you agree to this transfer, storing or processing of your Personal Information in the United States and Canada. You acknowledge and agree that your Personal Information may be accessible to law enforcement and governmental agencies in Canada under lawful access regimes or court order.
4 DISCLOSURE OF PERSONAL INFORMATION WITH THIRD PARTIES
4.1 Disclosure of Results to Clients
Noibu monitors e-commerce errors on behalf of its Clients. Accordingly, all Personal Information collected by Noibu about an End User, including name, contact information and transaction information (e.g. purchase history), is collected on behalf of and made available to the specific Client for which Noibu has been engaged.
4.2 Disclosure of Statistical Data
Noibu discloses aggregate statistical data to its partners and clients, such as advertisers and other third parties, who may use the data for business purposes. This information does not include any Personal Information or otherwise identify any individual End Users.
4.3 Service Providers and Business Partners
We may from time to time employ other companies and people to perform tasks on our behalf and need to share Personal Information with them to provide the Service. Unless we tell you differently, such third parties do not have any right to use the Personal Information we share with them beyond what is necessary to assist us. This includes third-party companies and individuals employed by us to facilitate our Service. Our current list of Sub-processors is available here.
4.4 Business Transfers
If we (or substantially all of our assets) are acquired, or if we go out of business, enter bankruptcy, or go through some other change of control, Personal Information may be made available or otherwise transferred to the new controlling entity, where permitted under applicable law.
4.5 With Your Consent
The security of your Personal Information is important to us. We use commercially reasonable efforts to store and maintain your Personal Information in a secure environment. We take technical, contractual, administrative, and physical security steps designed to protect Personal Information that you provide to us. We have implemented procedures designed to limit the dissemination of your Personal Information to only such designated staff as are reasonably necessary to carry out the stated purposes we have communicated to you.
7 ACCESS, CORRECTION AND ACCURACY
You have the right to access the Personal Information we hold about you in order to verify the Personal Information we have collected in respect to you and to have a general account of our uses of that information. Upon receipt of your written request, we will provide you with a copy of your Personal Information, although in certain limited circumstances, and as permitted under law, we may not be able to make all relevant information available to you, such as where that information also pertains to another user. In such circumstances, we will provide reasons for the denial to you upon request. We will endeavor to deal with all requests for access and modifications in a timely manner.
We will make every reasonable effort to keep your Personal Information accurate and up to date, and we will provide you with mechanisms to update, correct, delete or add to your Personal Information as appropriate. As appropriate, this amended Personal Information will be transmitted to those parties to which we are permitted to disclose your information. Having accurate Personal Information about you enables us to give you the best possible service.
8 CHANGES TO THIS POLICY
We may amend this Policy from time to time. Use of Personal Information we collect is subject to the Policy in effect at the time such information is collected, used or disclosed. If we make material changes or changes in the way we use Personal Information, we will notify you by posting an announcement on our App or Services or sending you an email prior to the change becoming effective. You are bound by any changes to the Policy when you use the App after such changes have been first posted
9 RESIDENTS OF THE EUROPEAN ECONOMIC AREA (“EEA”)
Noibu generally processes Personal Information (known as “Personal Data” under the EU General Data Protection Regulation) as a data processor in order to fulfill contractual obligations with our Clients and their End Users. Otherwise, Noibu will request consent from the data subject to process personal data as a data controller.
If you are a resident of the European Economic Area (EEA), you have certain data protection rights. Noibu aims to take reasonable steps to allow you to correct, amend, delete, or limit the use of your Personal Data.
If you wish to be informed what Personal Data we hold about you and if you want it to be removed from our systems, please contact us using the contact information set out below. Note that where we act as the data processor on behalf of our users, you will be required to contact the data controller directly to exercise your rights. Please note that we may ask you to verify your identity before responding to such requests.
You also have the right to complain to a Data Protection Authority about our collection and use of your Personal Data. For more information, please contact your local data protection authority in the European Economic Area (EEA).
10 CONTACT US
If you would like to: access, correct, amend or delete any personal information we have about you, register a complaint, or simply want more information contact our Privacy Compliance Officer at email@example.com or by mail at
Privacy Compliance Officer
48 Holland Avenue
Ottawa, ON Canada K1Y 0X4
Last Updated: 28-08-2020
The GDPR (General Data Protection Regulation) is an important piece of legislation that is designed to strengthen and unify data protection laws for all individuals within the European Union. The regulation became effective and enforceable on the 25th May 2018.
Our commitment: Noibu has undertaken the required business and technology steps to operate in a manner compliant with GDPR
What has Noibu done about the GDPR?
- Created a Data Processing Agreement.
- Ensure that we collect the minimum amount of data needed for you to use Noibu.
- We do not resell anyone’s data.
- Data is only used for the benefit of Noibu users.
Data Processing Agreement
You can access the Data Processing Agreement here. Please fill out, sign and send to firstname.lastname@example.org with the subject “Company Name, Data Processing Agreement”. We will countersign it and provide you with a fully executed downloadable copy via email within 2 business days. If you have any questions about its contents please email email@example.com.
What do Noibu customers need to do?
- If you are in the European Union you will want to sign a DPA with Noibu. You can access the DPA here and we’ll be happy to countersign.
If you have any questions regarding GDPR please contact firstname.lastname@example.org.